Comments (9)
@giotec
For MS-Windows the Command for step 3.1 - 3.3 is:
echo|set /p=ey...iJ9 | openssl dgst -sha256 -hex -sign %PRIV_KEY%
with the ey...iJ9 replaced by the check-string out of the Linux-Command (without quots).
But also with this right commands I finshed Step 3 with:
Error: Account registration failed. Please start back at Step 1. { "type": "urn:acme:error:malformed", "detail": "JWS verification error", "status": 400 }
In the moment I belive, that the reason for that is,;
a) the port-noumber (e.g. 45456) in the domain name for which I requested the certifikat or
b) the password protection of the domain.
I tryed to generate a certificat for my router, which do NOT allow a standard port number nor no Password. The routers is named FRITZ!BOX. It uses a service wich is named "myfritz" to allow the access form the internet with a dynamic IP-Adress.
from gethttpsforfree.
Seems like a bug in OpenSSL for Windows - worked on OpenSSL 1.0.1e-fips on a Linux box.
EDIT: It was actually Windows echo syntax adding an extra break/new line and the quotes.
from gethttpsforfree.
Does echo
work on Windows? Also, it may be that echo is adding a line break at the end of the output, which inadvertently gets included in the signature body.
from gethttpsforfree.
Echo works on Windows, but you are correct: by default, it adds a line break - and it does not require quotes around the digest message, otherwise it outputs the quotes too.
For Windows, the correct command line would be something like
set PRIV_KEY=account.key
echo|set /p=deadbeef... | openssl ... %PRIV_KEY%
Tested and seems to work - got the same hash output as of my Linux box
from gethttpsforfree.
How would you use this correct command line in windows?
from gethttpsforfree.
@giotec the command syntax is summarized on my post just above your question:
set PRIV_KEY=account.key
echo|set /p=deadbeef... | openssl ... %PRIV_KEY%
All you need to do is replace the missing gaps with the information provided on the GetHTTPSForFree web page at the moment you are creating your certificate -- "deadbeef..." by the long base64 string, "openssl ..." with the OpenSSL parameters for each step of signing and hashing.
Last but not least, you still need to download and install a copy of OpenSSL for Windows.
If you can't figure out what to replace and where to replaced on each step, then - don't get me wrong - I'm afraid you need to follow the official, Linux-based steps on a Linux-based console for further assistance. AFAIK Windows is not officially supported.
from gethttpsforfree.
@HQuest
What is the purpose of "deadbeef" in the cammand?
I've installed OpenSSL already
from gethttpsforfree.
On windows it's correct:
set PRIV_KEY=account.key
echo|set /p=deadbeef... | openssl ... %PRIV_KEY%
But remove spaces:
set PRIV_KEY=account.key
echo|set /p=deadbeef...|openssl ... %PRIV_KEY%
from gethttpsforfree.
In My Case I use Git for window to generate the stuff but was stuck with same problem. So I head to sslforfree.com to save myself from much wahala, Along the line I encounter same error at the last stop. It was then I figured out the am using wildcard which LE does not support yet so I remove the wildcard(ed) domain and it then work (on sslforfree.com actually I trust those guys sha )
from gethttpsforfree.
Related Issues (20)
- Wildcard support HOT 1
- Locally hosted semi-automated operation for externally hosted cert renewals HOT 2
- Node.js package and longer periods of time ? HOT 2
- hex2b64 returning null - Step 3 Accept terms not working. HOT 3
- Welcome to use automatic RSA signature JS tool, 3KB size🎉😊🎉 HOT 3
- Unauthenticated resource GETs on ACME v2 HOT 6
- I can't register an ecc account.key HOT 1
- Step 4: Verify Owner Keeps Failing HOT 2
- Getting a urn:ietf:params:acme:error:malformed error even though pub-key was created from priv key HOT 1
- -bash: syntax error near unexpected token `('
- Error in Step 3: Sign API Requests
- Feature Request: Preferred chain HOT 1
- Can't find files to serve for challenges HOT 1
- Error in Step 3: Account registration failed. Please start back at Step 1. HOT 14
- Step 5, Signed Certificate Chain 3 certs HOT 3
- ISRG Root X1 still verified by DST Root CA X3 HOT 2
- If you need to manually obtain the certificate, here is the easy-to-use web page ACME client on the browser, supports RSA and ECC, welcome to use🎉 HOT 1
- Finalize request error HOT 1
- Unable to access https://gethttpsforfree.com HOT 2
- Site offline HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from gethttpsforfree.