8
接受了X509證書
誰能爲我提供關於如何創建一個自簽名證書的例子,這將通過下面的代碼被接受:如何使用makecert創建的WCF
ServiceHost svh = new ServiceHost(typeof(MyClass));
var tcpbinding = new NetTcpBinding(SecurityMode.TransportWithMessageCredential, true);
//security
tcpbinding.Security.Message.ClientCredentialType = MessageCredentialType.UserName;
svh.Credentials.UserNameAuthentication.CustomUserNamePasswordValidator = new BWUserNamePasswordValidator();
svh.Credentials.UserNameAuthentication.UserNamePasswordValidationMode =UserNamePasswordValidationMode.Custom;
svh.Credentials.ServiceCertificate.Certificate = BookmarkWizSettings.TcpBindingCertificate;
....
svh.Open();
我已經使用
makecert -pe myCertificate
和
makecert -sv SignRoot.pvk -cy authority -r signroot.cer -a sha1 -n "CN=Dev Certification Authority" -ss my -sr localmachine
和
makecert -r -pe -n "CN=Client" -ss MyApp -sky Exchange
,我一直試圖產生與BouncyCastle的證書,但每次我得到以下異常:
It is likely that certificate 'CN=Dev Certification Authority' may not have a
private key that is capable of key exchange or the process may not have access
rights for the private key. Please see inner exception for detail.
和內部異常是空的。
這可能有一個竅門,但我沒有得到它。
如何爲我的WCF服務生成適當的證書?
的看看這個如何鏈接。 http://msdn.microsoft.com/en-us/library/ff648498.aspx – 2012-02-12 21:35:33
這個鏈接對我來說是最有幫助的。它遍歷所有步驟。 http://www.codeproject.com/Articles/96028/WCF-Service-with-custom-username-password-authenti – vikingben 2013-05-15 02:58:55