Biztalk send port cannot find certificate

0
votes

Good afternoon, I'm getting the following error trying to use a BizTalk send port to talk to a web service:

"System.InvalidOperationException: Cannot find the X.509 certificate using the following search criteria: StoreName 'My', StoreLocation 'CurrentUser', FindType 'FindByThumbprint'

The send port is configured as type 'WCF-WShttp', 'Transport' security mode, 'Certificate' credential type.

I have a self signed certificate that has the same thumbprint value as shown in the bizTalk configuration dialog. I've checked the file shows the correct thumbprint and it is not expired.

  • I've tried installing it in the all the following stores: "Current User": Personal, Trusted Publishers, Trusted People, Trusted CA's "Local Computer": Personal, Trusted Publishers, Trusted People, Trusted CA's.

  • When I go to the wcf send port configuration in the BizTalk management console it allows me to browse available certs. Our cert appears and lets me select it.

  • I made sure the service account for biztalk is added to the cert permissions.

Any suggestions?

Thanks!

3
wcfsecuritybiztalk

3 Answers

1
votes

The client certificate needs to be installed in BizTalk host user account certificate "Personal Store", also make sure any root certificate (if any) is in trusted store and then set it on adapter configuration.

1
votes

Following these procedures should work. https://msdn.microsoft.com/en-us/library/gg634534(v=bts.70).aspx. Probably the most important thing to note is that you must be logged on to the server with the actual account that is running the adapter handler's host instance service. And for a self-signed certificate I think you just need to add it to the Trusted Root CAs for that account too.

1
votes

Did you copy the thumbprint directly from the mmc to your BizTalk Send Port. First try to copy it to notepad++ and check if you see any special characters.

If that's the case remove the special characters and then copy that thumbprint to your BizTalk Send Port.