//cert is an EF Entity and // cert.CertificatePKCS12 is a byte[] with the certificate.

Question

0

Asked: June 1, 20262026-06-01T10:23:52+00:00 2026-06-01T10:23:52+00:00

//cert is an EF Entity and // cert.CertificatePKCS12 is a byte[] with the certificate.

0

//cert is an EF Entity and 
//    cert.CertificatePKCS12 is a byte[] with the certificate.

var certificate = new X509Certificate(cert.CertificatePKCS12, "SomePassword");

When loading a certificate from our database, on our staging server (Windows 2008 R2/IIS7.5) we get this exception:

System.Security.Cryptography.CryptographicException: An internal error occurred.

   at System.Security.Cryptography.CryptographicException.ThrowCryptographicException(Int32 hr)
   at System.Security.Cryptography.X509Certificates.X509Utils._LoadCertFromBlob(Byte[] rawData, IntPtr password, UInt32 dwFlags, Boolean persistKeySet, SafeCertContextHandle& pCertCtx)
   at System.Security.Cryptography.X509Certificates.X509Certificate.LoadCertificateFromBlob(Byte[] rawData, Object password, X509KeyStorageFlags keyStorageFlags)

NOTE: This issue does not happen locally (Windows 7/Casini).

Any insight is greatly appreciated.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-01T10:23:53+00:00

Editorial Team

2026-06-01T10:23:53+00:00Added an answer on June 1, 2026 at 10:23 am

Turns out there’s a setting in the IIS Application Pool configuration (Application Pools > Advanced Settings) to load the user profile for the application pool identity user. When set to false, the key containers aren’t accessible.

So just set Load User Profile option as True

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

//cert is an EF Entity and // cert.CertificatePKCS12 is a byte[] with the certificate.

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply