English 中文(简体)
我能为 Windows Azure 只使用 makecert.exe 为 Windows Azure 创建自签名的 SSL 证书吗?
原标题:Can I create a self-signed SSL certificate for Windows Azure using only makecert.exe?

Background :我需要测试 Windows Azure 上 WebRole 的 https 端点。 为此,我需要上传一个自签名证书, 在 WebRole 配置中添加证书缩略图, 最后将端点与配置的证书连接起来 。

我使用 makecert.exe 创建了自签名证书,可通过视觉工作室命令提示获取。 我使用了以下命令:

makecert.exe -r -pe -n "CN=test.cloudapp.net" -sky exchange -ss my -len 2048 test.pfx

命令成功后, 我可以将证书文件上传到 Windows Azure 主机服务。 但是 WebRole 的部署失败, 错误如下 :

Certificate with thumbprint 6AB... associated with HTTPS input endpoint Endpoint2 does not contain private key.

我必须从我的商店导出证书, 并选择包含私人密钥并提供一个密码。 如果我上传了导出证书文件并使用其缩略图, 那么部署就会成功 。

我想创建一个包含私人密钥的证书文件, 而不先将证书保存到任何存储处, 然后从存储处导出。 这样可以使用 makecert. exe 吗?

最佳回答

要创建证书而不保存到任何存储处, 您需要使用 < strong> pvk2pfx.exe (通过视觉工作室命令提示获取) 。

它是这样工作的:

makecert.exe -sv CertKey.pvk -n "CN=My Azure Certificate" CertKey.cer
pvk2pfx.exe -pvk CertKey.pvk -spc CertKey.cer -pfx MyPFX.pfx -po yourPasswordHere

正在运行 makecert. exe 将会要求您获取私人密钥的密码。 您需要输入该密码, 用于 pvk2pfx. exe 命令的 -po 参数 。

最后,您将有一个 pfx 文件( 包含私有密钥) 名为 < strug > MyPFX. pfx

问题回答

暂无回答




相关问题
ssl on login form?

I have SSL on my website....when the user logs in from a http page the form action is sent to https page, would this still secure the posted data? Or would it be better to have the form and the page ...

SSL slowness in EC2

We ve deployed our rails app to EC2. In our setup, we have two proxies on small instances behind round-robin DNS. These run nginx load balancers for a dynamically growing and shrinking farm of web ...

Why can t I find the truststore for an SSL handshake?

I m using the Spring RESTTemplate on the client side to make calls to a REST endpoint. The client in this case is a Spring app and Tomcat is the servlet container. I m running into issues making a ...

To add more parameter for my http header for SSL/TLS

As far as I understand, https is http plus SSL/TLS. What do I need to do if I want to add 3 more parameters for the header? I found a file inside Mozilla s NSS - ssl3ext.c, but I don t understand it ...

Why am I getting handshake_failure with Java SSL cert?

I m trying to use Hudson (which uses SVNKit) to access a Subversion repository that requires a client certificate to access it. I can access the same repository using the same client certificate via ...