-
Notifications
You must be signed in to change notification settings - Fork 30
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Certificate upload fails via cli but works via portal #305
Comments
@lil131 can you take a look at this? Thanks |
after support from microsoft what helped in my case was adding the certificate (pfx) on the local machine (with mmc). After this the upload worked. I had the exact same issues as in this thread (cli => "must contain one private key", portal => "password not correct" |
@Mathijs-Dijk thanks for reporting your case. Were you using a certificate obtained from LetsEncrypt as well? |
@Mathijs-Dijk Regarding:
How did you add the certificate? What commands were used? Did the pfx get changed during the process? |
@tmcgannon are you still able to repro this only on CLI & not on portal. If so would you be willing to run the CLI command with --debug & share the details, after removing some PII info or send an email to us directly with the details? We can share our email address to send the debug info to. Thanks! |
@tmxgannon @lil131 no our certificate is from Sectigo. But I think this issue occurs with all third party certificates for Azure Container Apps. We had no problems uploading the certificate in KeyVault and App Services with the exact same certificate.. As I mentioned, after adding the certificate to my local machine it worked. * Only downside is that I cannot upload it a.t.m. through Bicep in our release pipeline on Azure. |
@vinisoto / @anthonychu , @tmcgannon 's issue doesn't seem be client specific, could you help here? Thanks! |
Would like to hear from @tmcgannon: to confirm if the issue is still reproducible only on CLI but not on Portal |
@vinisoto @panchagnula It still does not work and shows this message: |
@vinisoto do we know the status of this issue? |
@kendallroden As of today, this is still a problem for me. |
@tmcgannon sorry to hear this - have you checked this with the latest version of ACA CLI 0.3.11? You can check using az --version & do update to latest using az upgrade |
@panchagnula I upgraded to 0.3.11 (from 0.3.9) and it worked. Thank you |
This issue is a: (mark with an x)
Issue description
I have obtained my certificate via LetsEncrypt and produced a valid pfx file which I can upload to KeyVault via azure cli but fails when adding to Azure Container App Environment using this command:
The error is:
However, I can upload manually in the portal.azure.com without an issue:
I looked at the pfx file using Mac Keychain Access and it looks like it has a private key with an intermediate key:
Steps to reproduct
See above
Expected behavior
The
az containerapp env certificate upload
command should succeed.Actual behavior
I get this error:
Certificate must contain one private key.
The text was updated successfully, but these errors were encountered: