SUMMARY
How to generate and upload Boomerang self-signed certificates for Azure access
ISSUE
How do I generate and install a self-signed certificate for use in accessing Microsoft Azure?
RESOLUTION
Microsoft's instructions to create and upload self-signed certificates are located here.
Simplified instructions are reproduced below.
TASKS
Generate
Windows
On a Windows system with Powershell execute the following as Administrator. Make sure to replace PASSWORD with your own password.$cert = New-SelfSignedCertificate -Subject "CN=MyManagementCert" -CertStoreLocation "cert:\LocalMachine\My" -KeyLength 2048 -KeySpec "KeyExchange"
Export-Certificate -Cert $cert -FilePath ".\my-cert-file.cer"
$password = ConvertTo-SecureString -String "PASSWORD" -Force -AsPlainText
Export-PfxCertificate -Cert $cert -FilePath "
.\my-cert-file.pfx
" -Password $passwordLinux
On a Linux system with OpenSSL installed execute the following and follow the prompts:openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout mycert.pem -out mycert.pem
openssl x509 -inform pem -in mycert.pem -outform der -out mycert.cer
openssl pkcs12 -export -out mycert.pfx -in mycert.pem -name "My Certificate"
Upload
- Go to the Azure certificate management page.
- Click "Upload" in the command bar
- Select the subscription(s) you want to upload too
- Select the .cer file of the certificate you just created
- Hit upload
Use with Boomerang
When creating your Azure Credential profile:- Select "Self-Signed Certificate
- Enter your Azure subscription ID found here.
- Enter the password you chose when generating your certificate
- Drop your .pfx file into the dialog.