We want to configure SSL for our application in Windows Azure Cloud. According to the instructions in the azure windows (ref: http://msdn.microsoft.com/en-us/library/windowsazure/ff795779.aspx ),
1) we received an SSL substitution certificate from CA (godaddy) for our * .mydomain.com domain
2) CSR is created from the web server hosting the domain (mydomain.com). And this hosted domain points to this web server.
3) To fill out the certificate, we uploaded the security certificate (.crt) to the hosting server and exported it to the personal information file (.pfx) from this server. (I'm sure Friendly Name matches CN).
4) Then we uploaded the .pfx file to windows azure webrole (cloud service).
5) In accordance with the instructions, we added the "Certificate Fingerprint" to the service configuration file and set the certificate name = "MySSLCert".
<Certificates> <Certificate name="MySSLCert" thumbprint="1234567890" thumbprintAlgorithm="sha1" /> </Certificates>
6) Then we added the HTTPS endpoint installed in the service definition file in Azure Project. as,
<ServiceDefinition name="AzureSSLTest" xmlns="http://schemas.microsoft.com/ServiceHosting/2008/10/ServiceDefinition"> <WebRole name="SSLTestproject" vmsize="Small"> <Sites> <Site name="Web"> <Bindings> <Binding name="Endpoint2" endpointName="Endpoint2" /> </Bindings> </Site> </Sites> <Endpoints> <InputEndpoint name="Endpoint2" protocol="https" port="443" certificate="MySSLCert" /> </Endpoints> <Certificates> <Certificate name="MySSLCert" storeLocation="LocalMachine" storeName="My" /> </Certificates> <Imports> <Import moduleName="Diagnostics" /> <Import moduleName="RemoteAccess" /> <Import moduleName="RemoteForwarder" /> </Imports> </WebRole> </ServiceDefinition>
After publishing, when we try to access the application using the URL of the Azure cloud, we get an "Identity not verified" warning (from the Chrome browser).
From the Firefox browser we get the error information,
testsl.cloudapp.net uses an invalid security certificate.
The certificate is valid only for the following names:
* .mydomain.com, .mydomain.com
(Error code: ssl_error_bad_cert_domain)
Then we created a subdomain (test.mydomain.com) and froward, which is a subdomain of the Cloud URL (testssl.cloudapp.net), now we are trying to access our application using the hosting URL, we get an error,
This web page is not available.
The web page https://testssl.cloudapp.net/ may be temporarily disabled or it may be constantly moving to the new web address.
Error 501 (net :: ERR_INSECURE_RESPONSE): Unknown error.
Help me solve this problem.