SUMMARY

How to generate and upload Boomerang self-signed certificates for Azure access

ISSUE

How do I generate and install a self-signed certificate for use in accessing Microsoft Azure?

RESOLUTION

Microsoft's instructions to create and upload self-signed certificates are located here.

Simplified instructions are reproduced below.

TASKS

Generate

Windows

On a Windows system with Powershell execute the following as Administrator. Make sure to replace PASSWORD with your own password.

 $cert = New-SelfSignedCertificate -Subject "CN=MyManagementCert" -CertStoreLocation "cert:\LocalMachine\My" -KeyLength 2048 -KeySpec "KeyExchange"

Export-Certificate -Cert $cert -FilePath ".\my-cert-file.cer"

$password = ConvertTo-SecureString -String "PASSWORD" -Force -AsPlainText

Export-PfxCertificate -Cert $cert -FilePath  ".\my-cert-file.pfx"  -Password $password
 

Linux

On a Linux system with OpenSSL installed execute the following and follow the prompts:

openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout mycert.pem -out mycert.pem

openssl x509 -inform pem -in mycert.pem -outform der -out mycert.cer

openssl pkcs12 -export -out mycert.pfx -in mycert.pem -name "My Certificate"

Upload

• Go to the Azure certificate management page.
• Click "Upload" in the command bar
• Select the subscription(s) you want to upload too
• Select the .cer file of the certificate you just created
• Hit upload

Use with Boomerang

When creating your Azure Credential profile:

• Select "Self-Signed Certificate
• Enter your Azure subscription ID found here.
• Enter the password you chose when generating your certificate
• Drop your .pfx file into the dialog.