Upload a real certificate when registering an Active Directory application

john john 946 Reputation points

I am reading this link @ https://sharepointstew.wordpress.com/2021/07/07/app-only-authentication-in-sharepoint-online-using-latest-azure-sdk/ which show how we can associate a self-signed certificate with an Active Directory registered application. but my question is if we want to use this application for production environment, so what are the steps to upload a real certificate instead of using self-signed certificate?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,919 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Siva-kumar-selvaraj 15,571 Reputation points

    Hello @john john ,

    You can use an existing X.509 certificate if you have one instead using self-signed certificate, upload a certificate (public key) with one of the following file types: .cer, .pem, .crt .

    The steps would remains same whereas In the Azure app registration for the client application:

    • Select Certificates & secrets.
    • Click on Upload certificate and select the certificate file to upload.
    • Click Add. Once the certificate is uploaded, the thumbprint, start date, and expiration values are displayed.

    Reference: https://learn.microsoft.com/en-us/azure/active-directory/develop/howto-create-service-principal-portal#option-1-upload-a-certificate

    Hope this helps.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.