Certificate issue in Kestrel ssl JSON configuration using .net Core 3.1

Question

I have seen this question answered but it doesn't seem to be working for .net core 3.1 This code finds the Certificate:

using (var store = new X509Store("Root", StoreLocation.LocalMachine))
{
    store.Open(OpenFlags.ReadOnly);
    var certCollection = store.Certificates;  
    var currentCerts = certCollection.Find(X509FindType.FindBySubjectName, "*.timedesk.com", false);
    if (currentCerts.Count == 0)
        throw new Exception("Https certificate is not found.");
}

This appsettings.json does not find the certificate:

"Kestrel": {
  "Endpoints": {
    "Https": {
      "URL": "https://toast.timedesk.com:443",
      "Scheme": "https",
      "Certificate": {
        "Store": "Root",
        "Location": "LocalMachine",
        "Subject": "*.timedesk.com",
        "AllowInvalid": false
      }
    }
  }
}

Gives the follow error:

System.InvalidOperationException: 'The requested certificate *.timedesk.com could not be found in LocalMachine/Root with AllowInvalid setting: False.'

score 3 · Answer 1 · answered Jan 27 '20 at 16:16

3

I figured out the issue, the Cert on the server did not have a private key. Once i got a private key this started working.Cert showing it now has private key

answered Jan 27 '20 at 16:16

Dartis

51
1
5

score 0 · Answer 2 · answered Nov 21 '22 at 21:45

0

My issue is the custom dev certificate was installed into the Personal | Certificates instead of Web Hosting | Certificates store. Easy fix, drag -n- drop.

answered Nov 21 '22 at 21:45

Racingman

18
3

Certificate issue in Kestrel ssl JSON configuration using .net Core 3.1

2 Answers2

Linked