我有一個運行單個應用程序的5節點服務架構羣集。我的應用程序設置使用自簽名證書加密。這個證書上傳到keyvault,並且我已經將這個URL提供給我的應用程序。我可以看到證書正在安裝在我的虛擬機上,運行Invoke-ServiceFabricDecryptText也會返回正確的解密值。然而,看着我的管理控制檯時,我看到這個錯誤:服務Fabric羣集節點無法從證書獲取私鑰
Error event: SourceId='System.Hosting', Property='Activation:1.0'.
There was an error during activation.Failed to ACL folders or certificates required by application. Error:0x80090014
展望節點日誌,我看到這些條目上述錯誤對應:
2016-9-7 20:09:44.541,Informational,2148,2580,Common.CryptoUtility,GetCertificate(LocalMachine, MY, FindByThumbprint:)
2016-9-7 20:09:44.541,Informational,2148,2580,Common.CryptoUtility,GetCertificate: match found: thumbprint = [thumbprint], expiration = 2017-09-02 16:08:04.000
2016-9-7 20:09:44.541,Error,2148,2580,Common.CryptoUtility,CryptAcquireCertificatePrivateKey failed. Error:0x80090014
2016-9-7 20:09:44.541,Error,2148,2580,Common.SecurityUtility,Failed to get the Certificate's private key. [thumbprint]. Error: 0x80090014
2016-9-7 20:09:44.541,Warning,2148,2580,Hosting.ProcessActivationManager,ACLing private key filename for thumbprint [thumbprint]. ErrorCode=0x80090014
我在一個失利。