4,817 questions
I can't stress enough that I DO NOT WANT TO BYPASS CERTIFICATE VALIDATION.
IIS MSDeploy Using Self Signed Certificate
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 54%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELB%3C/text%3E%3C/svg%3E)
Laura Bailey
1
Reputation point
I'm getting this error when I try to deploy to my IIS server from my development machine.
One of the suggestions is to install a trusted certificate at the endpoint. There is a self-signed certificate at the endpoint being used as the certificate for the WMSvc. I have installed this certificate on my development machine in my Trusted Root Certification Authorities certificate store but MSDeploy still returns the same error.
What are the steps to install a self-signed certificate on a machine so that MSDeploy will trust the server it deploys to? I do not want to bypass certificate validation.
Developer technologies | ASP.NET | ASP.NET Core
Windows for business | Windows Server | Devices and deployment | Configure application groups
Community Center | Not monitored
46,190 questions
2 answers
Sort by: Most helpful
-
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 82%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBZ%3C/text%3E%3C/svg%3E)
Bruce Zhang-MSFT 3,771 Reputation points2021-02-25T06:49:10.633+00:00 Hi @Laura Bailey ,
The reason for this problem is that the certificate is not trusted or the certificate is wrong, so there are two things you need to check.
- Make sure that the certificate password you are using is correct.
- Is the root certificate of the self-signed certificate also on the development machine? If the root certificate is not in the Trusted Root Certification Authorities certificate store, even if the self-signed certificate exists, it will still not pass the verification and it is still an untrusted certificate.
If the answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Best regards,
Bruce Zhang