GoDaddy SSL证书到Azure Web App服务(基本) [英] GoDaddy SSL Certificate to Azure Web App Service (Basic)
问题描述
您好。
我在GoDaddy注册了一个域名,需要SSL加密作为TLD要求的一部分。该证书是通过CSR申请的,我在当地有:GoDaddy p7b的中间证书,未加密的私钥PFX和
a公共CRT密钥。
我不知道如何让我的证书与App Service一起工作。我看到的每个教程都要求我有IIS ......但为什么我呢?如果我正在尝试使用App Service。教程说你需要使用CSR获取私钥(我有),然后通过加密导出
,以使其与Azure一起使用。这对我来说是一团糟,我只是想部署我的应用程序,让我很难理解这个过程有多复杂。我已经尝试过导入公钥和中间密钥的Cert Manager以及尝试导出为加密的PFX的
,但与教程不同,由于"无法导出不可导出的私钥",我的密钥将无法导出。我必须在PowerShell中弄清楚,因为Snap-In不会告诉我。
将私钥导入管理单元也是不可能的,因为它给了我一个错误:"此文件无效,可用作以下个人信息交换"。 Microsoft支持文章:https://support.microsoft.com/en-au/help/232154/iis-export-private-key-option-is-grayed-when-exporting-a-server-certif
表示我需要"访问原始证书备份(.pfx)文件。 "它没有描述我需要用原始证书备份文件做什么。
我尝试了以下教程:
https: //blogs.msdn.microsoft.com/waws/2015/12/02/add-an-ssl-certificate-to-an-azure-web-app-crt-and-p7b/
http://www.rhizohm.net/adding-a-godaddy-ssl-certificate-to-an-azure-app-service/
同样,我的客户端计算机上没有安装IIS,对我而言,使用Web App Services的重点是不需要处理基础设施。
谢谢你
我从来没有安装IIS来管理我的证书。我使用的是以下工具将我的证书转换为.pfx格式。
https://social.msdn.microsoft.com/Forums/en -US / 8f0e8a11-7822-4429-a307-d281ef3b9e8e / godaddy-ssl-certificate-to-azure-web-app-service-basic?forum = windowsazurewebsitespreview
*最后,我的同事更喜欢使用
digicert转换工具,这可能是最简单的方法。*
另外,您也可以考虑使用OpenSSL进行转换。
openssl pkcs12 -export -out domain.name.pfx -inkey domain.name.key -in domain.name.crt
Hello.
I have a domain name registered with GoDaddy which requires SSL encryption as part of the requirements of the TLD. The certificate is requested with a CSR and locally I have: an intermediate certificate from GoDaddy p7b, an unencrypted private key PFX, and
a public CRT key.
I am at a loss trying to get my cert working with an App Service. Every tutorial I see requires I have IIS... But why would I? If I'm trying to use an App Service. The tutorials say you need to use the CSR to get the private key (which I have) and then export
it with encryption in order to make it work with Azure. This is a total mess to me and I just want to get to deploying my application, it boggles my mind how complicated the process is. I've tried Cert Manager importing the public and intermediate key and
attempting to export as PFX with encryption but unlike in the tutorial, my key won't export due to "Cannot export non-exportable private key.", which I had to figure out in PowerShell because the Snap-In wouldn't tell me.
Importing the private key to the snap-in is also impossible, as it gives me an error: "this file is invalid for use as the following personal information exchange". Microsoft support article: https://support.microsoft.com/en-au/help/232154/iis-export-private-key-option-is-grayed-when-exporting-a-server-certif
says I need " access to the original certificate backup (.pfx) file. " which does not describe what I need to DO with the original certificate backup file.
I've attempted the following tutorials:
https://blogs.msdn.microsoft.com/waws/2015/12/02/add-an-ssl-certificate-to-an-azure-web-app-crt-and-p7b/
http://www.rhizohm.net/adding-a-godaddy-ssl-certificate-to-an-azure-app-service/
Again, don't have IIS installed on my client machine and to me, the point of using Web App Services is to not need to deal with infrastructure.
Thank you
I've never had to install IIS to manage my certs. What I have used is the below tool to convert my certs into .pfx format.
https://social.msdn.microsoft.com/Forums/en-US/8f0e8a11-7822-4429-a307-d281ef3b9e8e/godaddy-ssl-certificate-to-azure-web-app-service-basic?forum=windowsazurewebsitespreview
*Lastly, my coworker prefers to use the digicert conversion tool, which is probably the easiest method.*
Alternatively, you can also consider using OpenSSL for conversion as well.
openssl pkcs12 -export -out domain.name.pfx -inkey domain.name.key -in domain.name.crt
这篇关于GoDaddy SSL证书到Azure Web App服务(基本)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
