New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
401002 CA certificate not found - SDK - Microsoft.Azure.Devices.Provisioning.Client #1040
Comments
This may be a duplicate of issue #1010 I recommend reading the full thread, but the recommendation that came of it was
|
@timtay-microsoft, I would like try both option and confirm, I think first one should work as similar approach working currently that is with Root Certificate and leaf certificate. Second option I'm not clear, is that in C# code we need to include before device registration happens? in C# (ref X509Sample.csproj) we always provide the leaf certificate with its password, not sure how the intermediate will chain up. Or somewhere in Azure DPS certificate upload settings? |
Hi there, on top of above issue, do you have any pointers for below requirement? let me know if I shall create separate thread. I managed to register device (x509 certificate authentication) via DPS and able to send message and upload files. What I'm trying to achieve is once device is registered successfully next time I want to verify device is already there so I want to skip RegisterAsync step and directly send the JSON message/upload files to IOT hub. any reference for this?
|
@BhupalPatil you've already created a different issue and I've answered there.
PKI requires either the service to have the intermediate certificates installed to form the chain and verify or the client to send them over the wire. |
@BhupalPatil, @CIPop, thank you for your contribution to our open-sourced project! Please help us improve by filling out this 2-minute customer satisfaction survey |
OS - Windows 10
.net Environment - .net core 2.1
SDK - Microsoft.Azure.Devices.Client - 1.21.0
Microsoft.Azure.Devices.Provisioning.Client - 1.4.0
Microsoft.Azure.Devices.Provisioning.Transport.Mqtt - 1.1.8
Description of the issue:
trying to setup multiple simulated devices (.net core console app) under azure device prov. service and connect to iot hub.
in above flow I end up with below errror:
Microsoft.Azure.Devices.Provisioning.Client.ProvisioningTransportException
HResult=0x80131500
Message={"errorCode":401002,"trackingId":"408d5ad7-aa7c-45a1-b19a-e4af41ccf54b","message":"CA certificate not found.","timestampUtc":"2019-08-23T09:17:53.762099Z"}
Source=
StackTrace:
When I skip intermediate certificate that is directly create Device certificate from Root certificate I'm able to register the device successfully.
wondering whats wrong in case of intermediate certificate? Do I need to upload intermediate certificate as well? then where is it somewhere under DPS or in code? any sample for this scenario?
Let me know if I can provide more details.
The text was updated successfully, but these errors were encountered: