I have installed SSL successful in my azure server but it's not binding with domain. I am getting following error message.
Asked
Active
Viewed 283 times
-1
-
Do you use self-signed certificate to enable ssl? – Jerry Liu Apr 06 '18 at 12:31
-
Not sure what you're asking. I could not have written a more detailed error message myself. Your certificate is missing the required key usage extension. If it's self signed, re-generate with Server Authentication as key usage. If commercial, your certificate signing request (CSR) is missing key usage. `extendedKeyUsage = serverAuth` in OpenSSL lingo. – evilSnobu Apr 06 '18 at 13:44
1 Answers
0
It is not clear on what certificate you are using. To use a certificate in App Service, the certificate must meet all the following requirements:
Signed by a trusted certificate authority Exported as a password-protected PFX file Contains private key at least 2048 bits long Contains all intermediate certificates in the certificate chain
As highlighted by Snobu you may regenerate the certificate (for Self-Signed) with: extendedKeyUsage = critical,codeSigning,1.3.6.1.5.5.7.3.1 in the x509_extensions in the file. Refer this document for the step-step instructions on uploading a certificate.
AjayKumar
- 2,812
- 1
- 9
- 28