How to enable SSL for a .NET project in Visual Studio
September 18, 2015 21 Comments
Say you have a .NET MVC or Web API project and you’d like to run it on SSL. In other words you’d like to start up the project on a URL similar to https://localhost:xxxx.
The first step is easy. You just select the MVC/Web API project name in the solution and locate the property called “SSL Enabled” in properties window:
The same properties window will also show the HTTPS url for the application. In the above example it’s https://localhost:44300/. Copy that URL and go to the project properties window. Locate the Web tab and override the Project Url property with the https address:
Start the application. You’ll likely get a message in the browser saying that the localhost address is not trusted, you can continue to the website at your own risk. Here’s a Chrome example in Swedish:
The problem is that the certificate that was installed automatically for you by Visual Studio is not trusted. You can locate the certificate in the Personal folder of the computer-level certificates in the certificates snap-in:
If you double-click the certificate you’ll see that it’s not trusted:
The message also provides the solution: the certificate must be imported into the trusted root certification authorities folder. You’ll see that as a folder in the same snap-in just below “Personal”. So how can we do that?
Right-click the certificate, then select All Tasks, Export… from the context menu. Click Next on the certificate export wizard. Leave the “Do not export the private key” option untouched, click Next. Accept the default on the next screen, i.e. “DER encoded binary X.509” should stay selected, then click Next. Then you’ll need to provide a name and a location for the exported file. Call it “localhost” and save it in a location where you can easily find it. Click Next and the Finish. There should be a popup message saying that the export was successful.
Next right-click the folder called Trusted Root Certification Authorities and select All Tasks, Import… from the context menu. Leave the “Local Machine” option untouched in the certificate import wizard, click Next. Browse to the certificate you saved just before. Click Next and accept all the default values along the way until you reach the end of the wizard. There should be a message saying that the import was successful.
If you now go back to the Personal store and double-click the localhost certificate then you should see that it’s trusted:
OK, let’s start the .NET web project again, the opening page should open without any warning. If you still see the same issue then test it a brand new browser session, e.g. here in IE:
You can also view the extracted certificate from the browser window. Here’s an example from IE:
You can view the list of posts on Security and Cryptography here.
About Andras Nemes
Exercises in .NET with Andras Nemes 
Awesome Andras, u saved my time.
Thanks a lot Andras Nemes, this information helped me a lot !!
Thank you!
Using Windows 10 and going to Start and typing in cert I was able to get to the Manage Computer Certificates part of the Control Panel. Supposedly the in the control panel though I couldn’t find it directly using that, but clicking on it after it popped up in start as I just described got me to the snap-in you mentioned.
For future searchers: HTTPS SSL Certificate stopped working with Visual Studio when debugging localhost.
You fixed my problem, thank you!
Thanks, I get used to going through the various BS answers till I find a work around or a series of work arounds that cure the immediate symptom. Your solution resolves the problem without witchcraft or magic beans! Good work!
A good, straightforward approach.
Thanks – your clear explanation saved me time!
Nope, didn’t work. — Control-F5 just gives error: “Failed to register URL localhost….”… “Cannot create a file when that file already exists”
Pingback: ERR_SSL_PROTOCOL_ERROR na //localhost w VisualStudio 2015 | Blog Programisty.NET
Thanks! really helped me out.
How I can read HTTPS pages with C# console application
THank you
You are awesome man.
Great post, thank you
Splendid. First article online about this that really makes sense. Thank you.
Pingback: How to enable SSL / Https in a Visual Studio Web Api project | technical-recipes.com
I’m unable to enable SSL in the project property window. I’m getting the following error.
Filename: \\?\C:\…….\OneDrive – ….\Projects\folder\projectname\.vs\config\applicationhost.config
Error: Cannot write configuration file.
Note: My project files are saved on One drive for business.
any help?
i’m enable to find Ssl enable in my VS 2015 professional
Thanks a lot – Andras Nemes.
Great help. Tack så mycket.
I still can’t get it working in Chrome, or Firefox though, only in Internet Explorer and Microsoft Edge. I tried refreshing the page in chrome, clear the cache (Ctrl + Shift + R), open Incognito Session, restart the computer and clearing the SSL state. Still not working in Chrome :(.
Pingback: asp.net - Questo sito non possono fornire una connessione sicura
Very helpful. It has worked at once, which is rather rare case in our bussines 😦