Published on

Remote certificate is invalid error, self sign a cert

Remote certificate is invalid according to the validation procedure

So the problem is that Identity Server 3 and Sitefinity need a valid SSL Cert in order to let you into the backend.  The KB docs are crazy weak on detail.

The good news is that creating a local one for development is pretty easy to do. Lets assume we’re wanting to secure our new “” setup in IIS.

  • Open Powershell as Administrator (right-click on it)
  • Run this to get a self signed long expiry cert
  • Open the “Manage computer certificates” window (through start\programs, cortana search, whatever)

  • Your cert should be under Personal->Certificates, click on it, find your cert

  • Right-click->All Tasks->Manage Private Keys

  • Give your sites App pool access (Example: iis apppool\, save up

  • Right-click the cert and Copy

  • Now expand Trusted Root Certification Authorities->Certificates

  • Paste your cert into here

  • Now open your Sitefinity AuthenticationConfig.config, and put this into it

  • Don’t forget to edit your IIS bindings to use this new https certificate

    1. Open IIS
    2. Click your site
    3. Click Bindings
    4. If https is not here click Add (or if it is, select and hit edit)
    5. Fill in the details, choose the new cert in the bottom SSL dropdown.

If you don’t do step 13, then the host browser will show insecure cert errors, even if windows is configured to trust.

Boost your online presence.

Let us create the perfect digital experience for your company.

Contact us now