The certificate's private key could not be accessed. Ensure the access control list (ACL) on the certificate's private key grants access to the application pool user. (4368649)
The certificate's private key could not be accessed. Ensure the access control list (ACL) on the certificate's private key grants access to the application pool user.
说明
After configuring Token Encryption for Active Roles federated authentication, the authentication fails and the following error may be observed:
The certificate's private key could not be accessed. Ensure the access control list (ACL) on the certificate's private key grants access to the application pool user.
原因
The certificate being used for Token Encryption is a CNG certificate, which is not currently supported in Active Roles.
Enhancement ID 321624 has been generated to add support for CNG certificates in the future.
解决办法
WORKAROUND
Use CSP certificates.
STATUS
The product team will evaluate the request and this feature may become available on a future release of the product. Please refer to this article for updates or contact support referencing the Enhancement Request ID: 321624.