Sitefinity 10 and The remote certificate is invalid according to the validation procedure.

May 15, 2017
So the problem is that Identity Server 3 and Sitefinity need a valid SSL Cert in order to let you into the backend.  The KB docs are crazy weak on detail.

The good news is that creating a local one for development is pretty easy to do.  Lets assume we're wanting to secure our new "dev.mysite.com" setup in IIS.

  1. Open Powershell as Administrator (right-click on it)
  2. Run this 

    New-SelfSignedCertificate -DnsName "dev.mysite.com", "dev.mysite.com" -CertStoreLocation "Cert:\LocalMachine\My"

  3. Open the "Manage computer certificates" window (through start\programs, cortana search, whatever)

  4. Your cert should be under Personal->Certificates, click on it, find your cert

  5. Right-click->All Tasks->Manage Private Keys

  6. Give your sites App pool access (Example: iis apppool\dev.mysite.com), save up

  7. Right-click the cert and Copy

  8. Now expand Trusted Root Certification Authorities->Certificates

  9. Paste your cert into here

  10. Now open your Sitefinity AuthenticationConfig.config, and put this into it

    <authenticationConfig ....>
        <relyingPartySettings authCookieExpirationTime="900" authCookieSecureOption="Never" />
        <securityTokenServiceSettings>
            <identityServerSettings enableLogging="True">
                <signingCertificate subjectName="dev.mysite.com" />
            </identityServerSettings>
        </securityTokenServiceSettings>
    </authenticationConfig>

     

  11. Don't forget to edit your IIS bindings to use this new https certificate

    1. Open IIS
    2. Click your site
    3. Click Bindings
    4. If https is not here click Add (or if it is, select and hit edit)
    5. Fill in the details, choose the new dev.mysite.com cert in the bottom SSL dropdown.


Image Description

Steve McNiven-Scott

Best\Only Blogger on this site. Therefore defacto blogger of the year Award Winner.