将客户端证书添加到服务结构 [英] Adding Client Certifcate to Service Fabric
问题描述
我对Azure和Service Fabric还是很陌生,我使用自签名证书对Azure Portal上的Service Fabric进行了安全配置.
尝试向其添加客户端证书时遇到麻烦.
在安全性(service fabric cluster)选项卡上,我单击添加"按钮,选择管理客户端",然后添加证书指纹.
收到此错误消息后:
无法提交证书更新 .
我想念什么?!
我在文档中寻找了解决方案,但用谷歌搜索,但没有运气.
你能建议吗?
我遇到了同样的问题,我尝试从头开始创建不同的证书以及新的Fabric Service集群,但是没有任何进展.
我检查了浏览器日志,发现从Fabric API对门户的请求响应为400错误请求!
在检查Service Fabric集群活动日志时,我发现此写操作失败,并且检查JSON响应表示该证书未能通过Fabric API端通过多次验证检查!这很奇怪,因为该证书是由Azure密钥保管库创建的,并且全部使用Azure门户添加到了Fabric群集中.
我提交了一张支持票,调查后的答复是这是一个Fabric问题,他们正在推出新的更新.
我现在正尝试将以前失败的同一客户端证书添加到同一Fabric群集,并且错误消息未显示,并且群集现在正在更新.
I'm quite new to Azure and Service Fabric, I did a secure configuration of Service Fabric on Azure Portal, using a self signed certificate.
I'm having some trouble when trying to add a Client Certificate to it.
On the security (service fabric cluster) tab I am clicking Add button, choosing "Admin client" and then adding Certificate thumbprint.
After I got this error message:
Failed to submit updates for certificate .
What I missing?!
I looked for a solution in the Documentation and googled, but no luck.
Could you advise?
I had the same problem, I tried to create different certificates as well as a new Fabric Service cluster from scratch and I got no progress.
I checked the browser log, and find out that the request response to the portal from the Fabric API is 400 BAD REQUEST!
Checking the Service Fabric cluster activity log, I found that this write operation failed and checking the JSON response is saying that the certificate failed to pass multiple validation checks from the Fabric API side! Which is weird because this certificate was created by the Azure Key Vault and added to the Fabric cluster, all using the Azure Portal.
I submitted a support ticket and the response after the investigation is that it's a Fabric problem and they are rolling out a new update.
I'm trying now to add the same Client Certificate that was failing before to the same Fabric cluster and the error message didn't show up, and the cluster now is updating.
这篇关于将客户端证书添加到服务结构的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
