locked
Message Analyzer Add Certificate issue RRS feed

  • Question

  • Hello,

    I'm trying to upload a certificate to the message analyzer and receiving invalid password error. I know the password is correct as I can install the certificate using MMC with same password. I notice that every time I try to upload the certificate in Message Analyzer, I receive this error in Windows Security Log (below). This certificate has multiple SAN entries as it's for a load balanced environment. I've been able to successfully load certificates that do not have SAN entries.

    Any pointers on what might be causing this issue and how to resolve it?

    Message Analyzer Error: Password for MyCert.pfx is Incorrect.

    Corresponding Windows Security Log Entry:

    Cryptographic operation.

    Subject:
    Security ID: DOM\MyId
    Account Name: MyId
    Account Domain: DOM
    Logon ID: 0x56fad

    Cryptographic Parameters:
    Provider Name: Microsoft Software Key Storage Provider
    Algorithm Name: RSA
    Key Name: le-WebServerAlternateName-{some GUID}
    Key Type: Machine key.

    Cryptographic Operation:
    Operation: Create Key.
    Return Code: 0x80090010

    SANs in Certificate:

    DNS Name=DOMAPSV1
    DNS Name=DOMAPSV1.dom.ag.loc
    DNS Name=DOMAPSV2
    DNS Name=DOMAPSV2.dom.ag.loc
    DNS Name=DOMAPSV3
    DNS Name=DOMAPSV3.dom.ag.loc
    DNS Name=DOMAPSV4
    DNS Name=DOMAPSV4.dom.ag.loc
    DNS Name=DOMAPSV5
    DNS Name=DOMAPSV5.dom.ag.loc
    DNS Name=DOMAPSV6
    DNS Name=DOMAPSV6.dom.ag.loc



    Thursday, July 20, 2017 7:28 PM

All replies

  • Same issue with a different certificate that has 8 SANs instead of 12.
    Friday, July 21, 2017 5:35 PM