Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Using netsh, bind an SSL certificate to a port number is failing

Tags:

ssl-certificate

windows-7

wcf-binding

netsh

I have followed the instructions in SSL with Self Hosted WCF Service. When I am trying to bind the certificate on Windows 7 using netsh as described in How to: Configure a Port with an SSL Certificate., it is failing as follows.

In Windows PowerShell 

PS C:\> netsh http add sslcert ipport=0.0.0.0:8732 certhash=0000000000003ed9cd0c315bbb6dc1c08da5e6 appid={00112233-4455-6677-8899-AABBCCDDEEFF} Bad numeric constant: 224. At line:1 char:104 + netsh http add sslcert ipport=0.0.0.0:8732 certhash=0000000000003ed9cd0c315bbb6dc1c08da5e6 appid={001 <<<< 12233-4455-6677-8899-AABBCCDDEEFF} + CategoryInfo          : ParserError: (224:String) [], ParentContainsErrorRecordException + FullyQualifiedErrorId : BadNumericConstant

In a command prompt

C:\>netsh http add sslcert ipport=0.0.0.0:8732 certhash=0000000000003ed9cd0c315bbb6dc1c08da5e6 appid={00112233-4455-6677-8899-AABBCCDDEEFF}  SSL Certificate add failed, Error: 1312 A specified logon session does not exist. It may already have been terminated.
like image 785
Win Myo Htet Avatar asked Mar 09 '12 22:03

Win Myo Htet

People also ask

Can I use the same SSL certificate on multiple ports?

Buying a second domain or SSL certificate isn't an option + my ceritifcate supports multiple ports on a single domain. IF it is just another port, you do not need another certificate, certificates match hostnames, irrespective to port.

2 Answers

I fought with this forever to get my IIS Express to do SSL properly. It turns out my certificate was in the Trusted Root Certification Authorities store instead of the Personal Certificates store. This is what worked for me:

  1. Make sure your certificate is in "Certificates(Local Computer)/Personal/Certificates"
  2. netsh http add sslcert ipport=0.0.0.0:8732 certhash=0000000000003ed9cd0c315bbb6dc1c08da5e6 appid='{00112233-4455-6677-8899-AABBCCDDEEFF}'
  3. SSL Certificate successfully added
  4. Use MMC and drag certificate wherever you want it to go.
like image 167
TeamBrett Avatar answered Oct 10 '22 01:10

TeamBrett

I have found 4 possible causes for error 1312 in my port bindings:

  • The SSL cert is corrupt - you need to delete from the cert store and re-add.
  • The SSL cert is lacking a private key - you need to delete from the cert store and re-add the full public/private cert, or otherwise attach the private key to your certificate.
  • If installing on a pre-SP1 version of 2012R2, you may need KB 981506.
  • You may have added the SSL cert to your user store, and not the local machine cert store - delete from the user store and add to the machine store.
like image 34
Mark Avatar answered Oct 10 '22 02:10

Mark
Sign in to Comment

Related questions

I need a event to detect Internet connect/disconnect
How to create a Windows Service in Powershell for "Network Service" account?
fatal: unable to access 'H:\/.config/git/config': Invalid argument [Git on Windows 7]
Register 32 bit COM DLL to 64 bit Windows 7
Is JCIFS incompatible with windows 2008 R2 domain controllers?
How can I remove titlebar and taskbar icons of Java programs on Windows 7?
Has anyone had success with Visual Studio 6 on Windows 7?
Can I disable the printing page x of y dialog?
PerformanceCounters on .NET 4.0 & Windows 7
WampServer - mysqld.exe can't start because MSVCR120.dll is missing
What happened to AssemblyDescription in Windows 7?
Java user.home is being set to %userprofile% and not being resolved
System.UnauthorizedAccessException: Retrieving the COM class factory for Word Interop fails with error 80070005
How to install RVM on Windows 7
How can I recursively delete folder with a specific name with PowerShell?
Getting error, Error: Cannot find module ‘express’ after npm install
Pinning a Java application to the Windows 7 taskbar
Pyusb on windows - no backend available
Windows 7 php + Symfony2 terribly slow
How to terminate a program when it crashes? (which should just fail a unit test instead of getting stuck forever)

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!