c# - Azure Web Application new X509Certificate2() causing System.Security.Cryptography.CryptographicException: Access denied -


right uploading .pfx file, taking in password , calling 

var cert = new x509certificate2(filedata, password);

and storing things thumbprint, etc. not need store on server, validate valid cert , store information. on local works (obviously have better access key store) when put in azure error:

system.security.cryptography.cryptographicexception: access denied.

is there way information sidestepping or use method without getting access denied? not certs, let me know if need more information. thank you.

when opening pfx on windows private keys written disk. deleted later (unless specify persistkeyset), still have written (ish).

where written?

  • if specify x509keystorageflags.machinekeyset: in machine keystore, need administrator.
  • if specify x509keystorageflags.userkeyset: in user keystore, user profile needs exist/load.
  • if don't specify either:
    • if pfx itself has encoded key belongs in machine key set, machine keystore (admin required).
    • otherwise user keystore (profile required).

given "access denied" i'd guess hit case pfx specified machine keystore, resolve you'd change call to

new x509certificate2(filedata, password, x509keystorageflags.userkeyset)

and should work. if specify userkeyset , still error, might profile-loading problem.

there is option load pfx without writing private keys disk, it's not available in .net framework (though added .net core). if need p/invoking pfximportcertstore pkcs12_no_persist_key flag, pass resultant hcertstore value x509store.ctor(intptr) , read certificate(s) via x509store.certificates property. note, though, of .net framework won't understand these cert objects have associated private keys, they'll behave public-only certificate objects.


Comments

Post a Comment

Popular posts from this blog

sql server - Cannot query correctly (MSSQL - PHP - JSON) -

i have little problem on project. , turns out query result returns nothing when value of first name or last name has 'ñ' in it. here's code config.php: <?php ini_set('mssql.charset', 'utf-8'); header('content-type: text/html; charset=utf-8'); $servername = "192.168.1.21"; /* ip add of db server */ $connection = array("database" => "db", "uid" => "?", "pwd" => "***"); $conn = sqlsrv_connect($servername, $connection); if(!$conn){ echo "connection not established."; die(print_r(sqlsrv_errors(), true)); } ?> myquery: $idnumber = $_post["idnum"]; $response = array(); $query2 = "select clname, cfname, cmname, cqualifier student cidno = '$idnumber'"; try{ $stmt2 = sqlsrv_query($conn, $query2); } catch(pdoexeption $ex){ $response["success"] = 0; $response["message"] = "d...
Read more

php - trouble displaying mysqli database results in correct order -

i have table in database stores events , date expire. want display events on website display current events first expired events after? i have tried following sql $sql = "select noticeid, notice, noticedesc, noticeimg, noticedate, expirydate tbl_notices group noticeid ,expired order expirydate asc"; but returns expired results first due expirydate being ordered asc in query. my tbl_notice structure looks this noticeid => int(4) notice => varchar(100) noticedesc => text noticedate => timestamp noticeimg => varchar(40) expirydate => datetime expired => int(1) 0 current or 1 expired my php code is $sql = "select noticeid, notice, noticedesc, noticeimg, noticedate, expirydate tbl_notices group noticeid ,expired order expirydate asc"; $result = mysqli_query($conn,$sql); if ($result->num_rows > 0) { // output data of each row while($row = $result->fetch_assoc()) { ...
Read more

C++ Linked List -

i trying create linked list download txt file , use linked list handle file line line. when handling downloaded linked list operations performed on such text editor would. encountering problems however. seems "node(string value)" section of code has wrong though original node() declaration no arguments passes. unable figure out quite is. node.h class node { public: node(); node(string value); void setnext(node *nextnode); // allows user set "next" pointer of node points friend class linkedlist; private: string data; // data box node* next; // pointer box }; node.cpp # include <string> # include "node.h" using namespace std; node::node() { data = ""; next = null; } node::node(string value) { data = value; next = null; } void node::setnext(node *nextnode) // allows user set "next" pointer of node points { this->next = nextnode; } your #include <string> ...
Read more