This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi,
I'm debugging a web app .net 5 on a local server using IIS.
The app uses Azure.Identity which is implemented by Dependency Injection at service start.
If i deploy the web app to Azure, the service uses Managed Identity and everything should work nicely.
This gets quite complicated when using locally, in this case the requirement is environment variables defined to be used by the service.
I applied the required values to the configuration in order to authenticate successfully:
AZURE_CLIENT_CERTIFICATE_PATH C:\Users\Public\cert.pfx
AZURE_CLIENT_ID (guid)
AZURE_TENANT_ID (another guid)
The app is throwing could not load the certificate file, is something i am missing here?
Do i need to add some kind of permission to IIS in order to get access to that path? I don't think so...
Also the i did follow the troubleshooting steps... don't know what to do more, in order to get the app authenticated....
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 24%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESW%3C/text%3E%3C/svg%3E)
@Marco Enxuto There are many reasons for this error, It may be that your certificate does not exist, or your IIS does not have permission to access the path where the certificate is located, etc. you can refer to this link about how to set Up SSL on IIS.
Hi,
This question it's not related to set a certificate binding on a IIS website.
It's related to how the application loads the certificate to authenticate using Azure.Identity on Azure AD. It uses DI, as i stated earlier and that's the point of this question.
I'm trying to figuring out the need of using PEM certificate file instead of PFX.
Here it only mentions PEM, but here mentions PFX.
Hi guys, i finally got what was wrong. Just updated the question on GitHub, and it seems, we on IIS, should change the property Load user profile to True.
Based on this page.
Thank you all.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 61%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Be sure the certificate is not password protected.
Already did that but using Import-PfxCertificate cmdlet.
It imported without needing a password. Also i did not mention the password parameter.
Just to update this question, there's the same question posted by me on GitHub.
GitHub question