I need to install a self-signed CA root certificate that is used by one of our applications that uses Client Certificate Authentication with an external provider.
I have uploaded the .PFX client certificate but I also need to install the CA certificate into the trusted roots.
I have googled endlessly on how to do this and everywhere I look it speaks of Web-Roles, Jobs and Workers, Etc.
We don't have any of these on our project and I am not familiar with how they work or the process of creating / using them. We have a standard ASP.NET MVC 5 web application that we publish to an azure app service, that's about it.
How do I get this CA certificate installed on Azure?
I don't mind if I have to use a Web Role / Job / Worker / Whatever but I have never had to configure one before so please advise on how to get setup if that is the correct solution (I.E: If it just requires creating a new project on our VS2015 solution and configuring some deployment settings).
Thanks. G.
Looking at this blog post it's not possible.
That leaves you with two options:
If possible it would be better to handle the certificate policy in-app - then you are in complete control. Assuming you are using .NET then you can either implement an
ICertificatePolicywith your own validation or just ignore the "error" as per this SO asnwer.