This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 57.99999999999999%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELW%3C/text%3E%3C/svg%3E)
My previous self signed certificate has expired and I just cannot get a new one to work even after following multiple tutorials. This one was the latest. Whenever I try to use the localhost server, Office refuses to load the addin, because the certificate is invalid.
I think the issue is: When I import the certificate in Edge, it states "Import successful", but the certificate will not appear in the certificates list. I read here, that a missing private key might cause that issue. I tried fixing that with digicert utils, as suggested. But importing the certificate in digicert only shows the message "The file does not have any SSL or code signing enabled certificates contained in it."
My certificate looks valid, except it does not show the "protected by private key" info. It looks like that issue here. If I try to repair as proposed in that link, certutil asks to connect a smart card. Never heard of that.
As per the first tutorial, I created a root certification authority with key and imported it into the Trusted Root Certification Authorities. I the used the root.pem to create localhost.key/.csr and finally localhost.crt. I cannot see a fault with the process or the certificate except for the missing private key information (see attached image, Edit: Image upload does nothing, here is the link to the image.).
Please help, I am going nuts over this. Why does it not say there is a corresponding private key or if that is outdated, why is it not importing into Edge. Do I even need to get it imported into Edge for Office JS Addings to work. I am utterly confused by now. The commands I used to create the files are:
openssl genrsa -des3 -out rootSSL.key 2048
openssl req -x509 -new -nodes -key rootSSL.key -sha256 -days 10240 -out rootSSL.pem
<---Import--->
openssl req -new -sha256 -nodes -out localhost.csr -newkey rsa:2048 -keyout localhost.key
openssl x509 -req -in localhost.csr -CA rootSSL.pem -CAkey rootSSL.key -CAcreateserial -out localhost.crt -days 50000 -sha256
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 0%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXP%3C/text%3E%3C/svg%3E)
Hi @lars wissler ,
To import certificates into Edge, just open Microsoft Edge, click on Settings and more icon in the upper right corner > click the menu icon> select Privacy, search and services > scroll down to Security> click Manage certificates. You could also refer to this article for more details.
as I stated in my question I can follow the usual steps to import the certificate into Edge. I get the message from Edge "Import successful", but the certificate will not appear in the list of certificates will no appear in the list of certificates. In this thread (https://social.technet.microsoft.com/Forums/lync/en-US/ba27acae-e598-4d58-a56a-11f4e5b7163f/edge-certificate-not-appearing-after-import?forum=ocscertificates) it is discussed, that error can occur when there is no private key associated. I am also not asked for a password during import. But I do not understand why, because I create the certificate with a .csr file.
Hi @lars wissler ,
Well, I see that you have found the cause of the problem: Missing a private key. But you seem to be using a 3rd party plugin to try and fix it, I recommend you can use openSSL. In addition, you can also refer answers in this case. I thought this might help you.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 86%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDC%3C/text%3E%3C/svg%3E)
Hi @lars wissler ,
There's another option as well if you want to try it. We have a package you can run to install dev certs for you with the following command:
npx office-addin-dev-certs install
More details are here: https://github.com/OfficeDev/Office-Addin-Scripts/tree/master/packages/office-addin-dev-certs
With some help I managed the correct certificat and import procedure. The solution can be found here: https://stackoverflow.com/questions/71470513/selfsignedcertificate-not-accepted-in-ms-edge-win-10/71487759#71487759
