Reputation: 3013
Apple developer - Invalid CSR, Invalid Certificate
I generate .certSigningRequest file via Keychain Access (Keychain Access -> Certificate Assistant -> Request a Certificate From a Certificate Authority..., I fill in my mail and I save it to disk).
When I log into Apple developer account and try to generate Certificate with it I get message: "Invalid CSR - Invalid Certificate"
What is reason for this? Why this message appears, what could be wrong?
I've seen several StackOverflow questions like this: iPhone Developer Portal won't accept my CSR and I haven't found solution:
- I tried downloading WWDR certificate
- I'm using Safari (but button works)
- there is only one developer certificate on account...
Upvotes: 11
Views: 14234
Answers (7)
Reputation: 77
Till recently (December '19) Firefox worked perfectly to create such certificates.
Today Firefox gave me an empty page, Edge reported this "Invalid CSR" message. Finally Chrome did the job...
Working on Windows 10, CSR was created with OpenSSL for a "Pass Type ID" certificate.
Upvotes: 0
Reputation: 2093
Avoid using Internet Explorer or Edge. Use Google Chrome or Safari on the Mac.
Upvotes: 0
Reputation: 745
Within Keychain Access, just ensure category CERTIFICATES is selected, followed by selecting/highlighting the "Apple Worldwide Development Relations Cert Authority" entry, finally followed by requesting your cert from a CA, will resolve the invalid CSR issue.
Upvotes: 1
Reputation: 271
In my case, I just forgot to input 'Common name' in Certificate Assistant form.
So, make sure you filled
- User Email Address
- Common Name
- Saved on disk check
Upvotes: 10
Reputation: 27
After HOURS of tinkering we found that the issue is a client side (javascript) that checks for the EXACT words "-----BEGIN CERTIFICATE REQUEST-----". Our CSR had "-----BEGIN NEW CERTIFICATE REQUEST-----" (note the word NEW)... After removing "NEW", it was accepted by Apple.
Upvotes: 1
Reputation: 1247
Try to delete an apple WWDR(World Wide Developer Relation) certificate expiring on February 14, 2016 from your keychain (if you got one on your system), this can be found in the login tab. Then download the updated CSR from apple, can be found here- https://developer.apple.com/support/certificates/expiration/ Restart xCode and you will be able to regenerate a CSR normaly, deleting this expired certificate made tons of bugs in the developers tools, I hope this will help you.
Upvotes: 0
Reputation: 213
The command below should print the contents of the Certificate Signing Request
openssl req -in certSigningRequest -text
If the command is not able to decode the CSR it means it was not properly generated. You might want to inspect the file with a text editor to tr to find clues about why the CSR generation failed
Upvotes: -2
Related Questions
- Unable to export Apple production push SSL certificate in .p12 format
- "Debug certificate expired" error in Eclipse Android plugins
- Invalid certificate (CSR)
- Error to Request a Certificate From a Certificate Authority on Mac Keychain Access
- Apple MDM Vendor CSR Signing
- Create iOS Development Certificate - Invalid Certificate - for team
- Unable to create Apple Developer certificate request using keychain access tool