Comments (4)
How are you using the EC key? Have you tried RSA too, and confirmed that's working? Do you have some example code of how you're trying to use it?
from cli.
Regarding ECC key:
public static async Task connect_with_pub()
{
string x509_pem = @"C:\Users\INNEBIS1/client1-authn-ID.pem";
string x509_key = @"C:\Users\INNEBIS1/client1-authn-ID.key";
// Load certificate and private key from PEM files
var certificate = new X509Certificate2(X509Certificate2.CreateFromPemFile(x509_pem, x509_key).Export(X509ContentType.Pkcs12));
Here when I try to extract the values inside certificate then i see
Regarding RSA: I tried creating pem and key file using below command and tried checking the values of certificate there I am not seeing any issue.
step certificate create client1-authn-ID client1-authn-ID.pem client1-authn-ID.key --ca ../.step/certs/intermediate_ca.crt
--ca-key ../.step/secrets/intermediate_ca_key --no-password --insecure --not-after 2400h --kty RSA --size 2048
So eventually i am not seeing any error when creating cert files using RSA algo but facing issue when "step" default create the cert file with ECC with .net framework.
from cli.
According to this StackOverflow thread, new X509Certificate2
doesn't support EC: https://stackoverflow.com/questions/45107057/creating-x509certificate2-from-ecc-x509certificate-throws-system-notsupportedex.
This blog has some alternatives: https://www.scottbrady91.com/c-sharp/ecdsa-key-loading.
from cli.
Related Issues (20)
- [Bug]: Updating provisioner configuration makes template configuration disappear HOT 4
- [Bug]: Console flow broken for Azure AD (Entra) HOT 1
- [Bug]: step ssh certificate only adds the cert to ssh-agent and not the private key HOT 6
- [Bug]: `step ca init --provisioner acme --acme` will create an invalid config
- [Bug]: cosign documentation has wrong identity HOT 1
- Cloudflare zero trust service token HOT 2
- Stable URL to the latest release files HOT 2
- `step certificate inspect` outputs to stdout, despite docs saying otherwise
- Unknown public key type ERROR- Any chances to add support of gost-engine (openssl-gost-engine RPM or libengine-gost-openssl DEB)? HOT 1
- [Bug]: `v0.25.0` causes error (`error reading <kms_id/alias>: no such file or directory`) when signing intermediate CA certificate w/ AWS KMS HOT 3
- [Bug]: Step CLI panics when inspecting improperly encoded certificate HOT 3
- [Bug]: cannot install certs on debian HOT 1
- [Bug]: document for leaf certificate template contains typo HOT 1
- [Bug]: `step ca provisioner update` fails for JWK provisioner if `--create` is specified
- [docs]: usage of 'ca token' unclear
- [docs]: Installation routine not working - cosign verification failed HOT 2
- [Bug]: certificate p12 = The format of the file is invalid. HOT 4
- Add option for step ca certificate to return certificates in PKCS8 or PKCS12
- [Bug]: Missing Armv7 build artifact in releases HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from cli.