-
Notifications
You must be signed in to change notification settings - Fork 89
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
File 'CertName' does not exist. #255
Comments
Ok this indeed is not a bug, i traced it down - still not sure what the solution is though. edit, ok switching the service connection to type "service principal" instead of using federation type, it seems to work. Except wrong RBAC permissions, which I still need to figure out which ones are required. So I would leave this open with 2 requests to save other some headaches:
|
I have faced similiar issue in Azure DevOps when using AzureSignTool. My current workaround is to get the access token with az cli and then pass that directly to AzureSignTool. It would be nice if AzureSignTool supported federated authentication as it is now recommended way of authenticating with Azure from Azure DevOps. My workaround if anyone wants to use it:
On a side note I think displaying "File 'CertName' does not exist" as an error when there is authentication issue should be considered a bug. |
This is likely not a bug but a mistake on my side, however I struggle to get this working with an RBAC enabled KeyVault via service connection, and wonder if there could be some details in the docs provided in the permissions necessary for RBAC, or some help if my issue is of totally different nature, since the error message is quiet strange.
I receive the error
File 'CertName' does not exist.
when running command
I am running it via AzureCLI@2 Task like this:
The certificate exists under the name "CertName" in the KeyVault. The service connection passed to "azureSubscription" does have access to the key vault (i even gave it Admin permissions on the vault in the end while testing).
So:
Thanks in advance!
edit:
After looking through the source I think the message is from here
AzureSignTool/src/AzureSignTool/Program.cs
Line 501 in 078c762
The text was updated successfully, but these errors were encountered: