堆栈内存溢出
  简体   繁体   English

WSO2身份服务器:无法访问证书的私钥

[英]WSO2 Identity server : The certificate's private key could not be accessed

 原文  2017-01-11 06:33:07       asp.net/ ssl/ passive-sts

问题描述

Configuration Error 配置错误

Description: An error occurred during the processing of a configuration file required to service this request. 说明:在处理服务于此请求所需的配置文件期间发生错误。 Please review the specific error details below and modify your configuration file appropriately. 请查看下面的特定错误详细信息,并适当修改您的配置文件。

Parser Error Message: ID1024: The configuration property value is not valid. 解析器错误消息:ID1024:配置属性值无效。

Property name: 'serviceCertificate' 物业名称:“ serviceCertificate”

Error: 'ID1039: The certificate's private key could not be accessed. 错误:'ID1039:无法访问证书的私钥。 Ensure the access control list (ACL) on the certificate's private key grants access to the application pool user. 确保证书私钥上的访问控制列表(ACL)授予对应用程序池用户的访问权限。

Thumbprint: 'D39BF05A878A253773B7B6BFDB8B65C160C42EB4'' 指纹:'D39BF05A878A253773B7B6BFDB8B65C160C42EB4''

Line 104: </system.diagnostics>--> Line 105: <microsoft.identityModel> Line 106: <service> Line 107: <issuerNameRegistry type="Microsoft.IdentityModel.Tokens.ConfigurationBasedIssuerNameRegistry, Microsoft.IdentityModel, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"> Line 108: <trustedIssuers>

Source File: D:\\nz\\new_RPWebApp\\web.config Line: 106 源文件:D:\\ nz \\ new_RPWebApp \\ web.config行:106

1 个解决方案

解决方案1
 0  2017-04-19 22:32:28

did you try answer on Error: 'ID1039: The certificate's private key could not be accessed 您是否尝试回答以下错误:'ID1039:无法访问证书的私钥

I was getting same issue. 我遇到了同样的问题。 The fix is, to allow the AppPool user (NETWORK SERVICE) to read the certificate private key). 解决方法是允许AppPool用户(网络服务)读取证书私钥)。

  • Open the MMC snap-in by running mmc.exe. 通过运行mmc.exe打开MMC管理单元。
  • Select File -> Add/remove snap-in. 选择文件->添加/删除管理单元。 Select Certificates and click “Add”. 选择证书,然后单击“添加”。
  • Select “Computer Account”. 选择“计算机帐户”。 Click Finish. 单击完成。 Click Next. 点击下一步。
  • Drill down to Personal -> Certificates. 向下钻取至个人->证书。
  • Right-click your certificate and select All Tasks -> Manage private keys. 右键单击您的证书,然后选择所有任务->管理私钥。
  • Add NETWORK SERVICE (or the appool use) and give it “read” privileges. 添加NETWORK SERVICE(或appool使用)并为其赋予“读取”权限。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 错误 ID1039:即使应用程序池帐户有权访问私钥,也无法访问证书的私钥 - Error ID1039: The certificate's private key could not be accessed even when app pool account has access to private key 带有ASP .NET和WIF的WSO2身份服务器 - WSO2 Identity server with ASP .NET and WIF 使用WSO2 Identity Server一次注销-WS-Federation - Single sign out with WSO2 Identity Server - WS-Federation IIS Web Server下证书私钥抛出CryptographicException - Certificate private key throws CryptographicException under IIS Web Server 如何提供对应用程序池标识的私钥访问? - How to provide private key access to the application pool identity? ASP.Net ADFS令牌加密证书私钥 - ASP.Net ADFS Token Encryption certificate private key 根据验证过程,远程证书无效。 身份服务器 - The remote certificate is invalid according to the validation procedure. Identity Server 无法在SQL Server中将标识键设置为是 - Not able to set is Identity key as Yes in SQL Server 获取网站的SSL证书的公钥 - Get the public key of a website's SSL certificate 如何让 ASP.NET 访问证书存储中证书中的私钥? - How to give ASP.NET access to a private key in a certificate in the certificate store?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM