tags:

views:

1188

answers:

3
Q: 

"The parameter is incorrect." error using netsh http add sslcert

Following the instructions on "How to: Configure a Port with an SSL Certificate" in this link: http://msdn.microsoft.com/en-us/library/ms733791.aspx, I entered this command on the commandline (duh):

C:\Program Files (x86)\Microsoft Visual Studio 9.0\VC>netsh http add sslcert ipp ort:10.141.146.227:7001 certhash=5d48e604007b867ae8a69260a4ad318d2c05d8ff appid= {EDE3C891-306C-40fe-BAD4-895B236A1CC8} The parameter is incorrect.

my certhash thumbprint was taken from the certificate in Certificates(Local Computer)>Personal>Certificates folder.

The appid GUID was generated.

What else is wrong that I need to fix to get this to work?

A: 

there were a few things i did that i thought made it work after getting the same "The parameter is incorrect." Error.

1) restarted machine and did it again. it worked the first time. 2) made sure i was in c:\ and put the command again after restarting didn't work

i couldn't explain why but i think that maybe both times, there was something else wrong. because the third time this happened to me,

3) i went through the thumbprint of my CA (not the issued server cert) and copied it again from the MMC and it worked.

after this happened, i deleted it again (netsh http delete sslcert ipport=0.0.0.0:) and repeated the process using the thumbprint of the server certificate. The darned thing worked again.

I dunno, just try going through the same thing I did. maybe one of these would work. In the end, i suspect that I entered a bogus space or character in the certhash.

Derrick  2009-05-05 20:31:33
+2  A: 

Looking at the syntax for the netsh command, I saw this example:

add sslcert ipport=1.1.1.1:443 certhash=0102030405060708090A0B0C0D0E0F1011121314 appid={00112233-4455-6677-8899-AABBCCDDEEFF}

By the looks of it, your problem is that you're doing 

ipport:10.141.146.227:7001
      ^

as opposed to 

ipport=10.141.146.227:7001
      ^
cmptrgeekken  2009-05-05 21:12:58
A: 

I was getting this error as well when I was just getting started with http.sys. After I ran: 

netsh http add iplisten ipaddress=0.0.0.0

then the netsh http add sslcert commands started behaving properly.

Tim Danner  2009-07-16 15:51:00

related questions

netsh for whitlisting IP Addresses. 4000 IPs, how to add?
Disabling Bluetooth support in Windows XP-7
How to get default NIC Connection Name in command line or C#
Servicehost throwing an error, even though added to configuration with netsh
MTU mismatch between GetIfEntry and netsh
C# HttpListener without using netsh to register a URI
How do I disable the network connection from .Net without needing admin priveledges?
WCF selfhosted service, installer class and netsh
Manually configure WCF to use HTTP on Vista home premium
Querying a DHCP server in C#
How do you set up HTTP ACL's for a WCF 3.0 REST application on Windows 7 ?
netsh error on windows 2008 R2
netsh htpp add urlacl : add reservation for a group
Programatically Create DHCP Reservation in C#
Cannot get StandardOutput for some process calls in cassini or unit test on win7 64
What appid should I use with netsh.exe ?
Connecting phpMyAdmin to a MySQL server over SSL
Apache reverse proxy set up SSL certificate
Do I need SSL Cert for simple community site?
Does the brand name matter for a SSL EV certificate?
How do I generate an SSL certicate?/ How to access a page with invalid certicate in FF3?
Who sells the cheapest EV SSL certificate?
When using keytool to generate a CSR file, does it have to be generated on the hosting server?
WCF self-hosted service with transport security (Authentication failed because the remote party has closed the transport stream.)