Hi,
I have an IIS SSL Binding defined on my DEPLOY Nuget Step. Apparently, the SSL Cert needs to be installed in a specific store. Is there a way to circle this and specify the store via parameter?
Cheers,
Carlos
Hi Carlos,
Thanks for getting in touch! A couple of things. What version of Octopus are you using?
In the more recent versions Octopus will determine the store from the thumbprint.
Hope that helps!
Vanessa
Hi miss Love,
The Octopus Server version is: Octopus Deploy 2.6.5.1010
The Tentacle version is 2.6.5
Here’s the step Error detail:
Error 14:14:47
Could not find certificate under Cert:\LocalMachine with thumbprint 0e 6f
b6 75
Error 14:14:47
2e 7c 98 eb e4 36 95 c0 54 ba 0b ed 83 8a ca 60. Make sure that the
certificat
Error 14:14:47
e is installed to the Local Machine context and that the private key is
availab
Error 14:14:47
le.
Error 14:14:47
At C:\Program Files\Octopus
Deploy\Tentacle\Scripts\Octopus.Features.IISWebSite
Error 14:14:47
_BeforePostDeploy.ps1:125 char:9
Error 14:14:47
- throw "Could not find certificate under Cert:\LocalMachine with thumb
Error 14:14:47
pri …
Error 14:14:47
Error 14:14:47
~~~
Error 14:14:47
+ CategoryInfo : OperationStopped: (Could not find ...y is availa
Error 14:14:47
ble.:String) [], RuntimeException
Error 14:14:47
+ FullyQualifiedErrorId : Could not find certificate under Cert:\LocalMach
Error 14:14:47
ine with thumbprint 0e 6f b6 75 2e 7c 98 eb e4 36 95 c0 54 ba 0b ed 83 8a
Error 14:14:47
ca 60. Make sure that the certificate is installed to the Local Machine co
Error 14:14:47
ntext and that the private key is available.
Cheers,
CarlosHi Carlos
Are you using the ssl thumbprint in a variable by any chance ?
Windows has this really annoying bug where it inserts some (invisible) whitespace at the beginning of the SSL thumbprint when you copy it out. It’s easy enough to remove in a text editor when you know it’s there.
We try to trim it out from the SSL binding dialog, but somebody figured out recently that you can get the problem to happen with a variable.
More info here http://help.octopusdeploy.com/discussions/problems/16467-ssl-thumbprint
Does that help you at all ?
Regards
Damian
Hi Damian,
First of All - OCTOPUS IS AWESOME… KEEP UP THE GREAT WORK AND MAKE THIS
TOOL EVEN MORE AWESOME! 
Now… back to the problem :
Yes, I have the ssl thumbprint in a variable, I copy pasted it and we all
know about this damn windows bug. That’s why when I am copy pasting it, i
never copy the 1st and last character… I put these manually.
But, I think the issue is somewhere else. Because, when I go to IIS >
Server Certificates. I see that the *Certificate Store *is Personal.
When I read the octopus error logs, it says: Make sure that the certificat
Error 14:14:47
e is installed to the Local Machine context and that the private key is
availab
*Could this be the issue? *
Cheers,
Carlos Sardo
Hi Damian,
I solved the issue by removing all whitespaces int the SSL Thumbprint
variable. Perhaps it is a good idea to have this on the help documentation.
Thanks for the help anyways!!
Cheers,
Carlos
Great to hear you sorted it, that’s a tricky bug isn’t it ?
I think we’ll do one better and just try to trim the whitespace in a few more places, unfortunately we have to be careful because we know some customers use variables for passwords that start with a space! I’m going to look at our IIS binding script and see if we can trim it again there.
Glad to hear you’re an Octopus fan!!