Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,311 questions
Have MS fix incorrect error message (Azure Certificate Authorities)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 87%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJP%3C/text%3E%3C/svg%3E)
Jeff Parsons
0
Reputation points
Not really a question - attempted to report this bug in the UI, but MS redirected me here, so figure I'll post the details to help others and maybe MS will pick up on it...
TLDR: Entra Admin Certificate Authorities shows an incorrect error message when attempting to upload a new generation of an existing certificate (i.e. the same CN/subject, but with new dates.)
Background
I needed to replace a certificate within Entra Admin Certificate Authorities for an Entra ID CBA setup this week and thought I could upload the new certificate without first removing the old certificate, but learned that is not possible. Also learned that Azure Certificate Authorities will give back an incorrect error message when trying to upload different generations of a single Subject's (CN). It would be great if Azure could fix this issue to show the true error.
Error Message:
Certificate uploading failed A certificate with the same thumbprint has already been uploaded.
In my situation, the thumbprint of the old and new certificates did not overlap with the same thumbprint, but the "Subject" of the certificate was exactly the same. Removing the old certificate and adding the new one worked without error.
Potential Fix:
Show the true error message, such as "A certificate with the same subject has already been uploaded."
Sign in to answer