Ivanti Identity Broker webpage error: Server Error in '/' Application

Version 2


    The Ivanti Identity Broker webpage shows the following error message:


    Server Error in '/' Application.

    Response status code does not indicate success: 500 (Internal Server Error).

    Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

    Exception Details: System.Net.Http.HttpRequestException: Response status code does not indicate success: 500 (Internal Server Error).


    Logging from Internet Information Services (IIS) shows an error message:


    17:10:56 [idB-startup] [Error] (RES.Core.Configuration.CertificateManager)

    Failed loading certicate from '"Certificates\RESIdB.pfx"' (might be wrong folder or password)

    System.Security.Cryptography.CryptographicException: Access denied.

       at System.Security.Cryptography.CryptographicException.ThrowCryptographicException(Int32 hr)

       at System.Security.Cryptography.X509Certificates.X509Utils._LoadCertFromFile(String fileName, IntPtr password, UInt32 dwFlags, Boolean persistKeySet, SafeCertContextHandle& pCertCtx)

       at System.Security.Cryptography.X509Certificates.X509Certificate.LoadCertificateFromFile(String fileName, Object password, X509KeyStorageFlags keyStorageFlags)

       at System.Security.Cryptography.X509Certificates.X509Certificate2..ctor(String fileName, String password, X509KeyStorageFlags keyStorageFlags)

       at RES.Core.Configuration.CertificateManager.GetFileBasedCertificate(CertificateOptions options)




    The Application Pool for Identity Broker doesn't have access to the certificate and/or its location.




    The Application Pool for Identity Broker should run under the Local System account or an account that has permissions to access the certificate and its location.

    Recycle the Application Pool after making changes.