我完成了this answer的步骤1-4,它将我的证书添加到“受信任的根证书颁发机构”&gt; “证书”和证书被授予<All>预期用途。
The remote certificate is invalid according to the validation procedure时执行以下PowerShell代码失败,$ftp_request.EnableSsl = $true。它在$ftp_request.EnableSsl = $false时成功。
$file_folder = "C:\Users\username\Desktop"
$file_name = "test.txt"
$file_path = "$file_folder\$file_name"
$ftp_path = "ftp://127.0.0.1/$file_name"
$username = "user"
$pwd = "pass"
# Create a FTPWebRequest object to handle the connection to the ftp server
$ftp_request = [System.Net.FtpWebRequest]::Create($ftp_path)
# set the request's network credentials for an authenticated connection
$ftp_request.Credentials =
New-Object System.Net.NetworkCredential($username, $pwd)
$ftp_request.UseBinary = $true
$ftp_request.UsePassive = $true
$ftp_request.KeepAlive = $false
$ftp_request.EnableSsl = $true
$ftp_request.Method = [System.Net.WebRequestMethods+Ftp]::UploadFile
$file_contents = Get-Content -en byte $file_path
$ftp_request.ContentLength = $file_contents.Length
$ftp_stream = $ftp_request.GetRequestStream()
$ftp_stream.Write($file_contents, 0, $file_contents.Length)
$ftp_stream.Close()
$ftp_stream.Dispose()
我知道可以通过向ServicePointManager.ServerCertificateValidationCallback编写处理程序来手动处理此问题,但我希望Windows证书管理器自动处理SSL证书。
答案 0 :(得分:0)
$ftp_path = "ftp://127.0.0.1/$file_name"
为所有目的添加受信任的证书并不意味着所有主机都信任证书。用于连接的主机名仍必须与证书的主题相匹配。虽然您没有提供有关证书本身的任何信息,但我的猜测是您的证书不是针对主题“127.0.0.1”颁发的。