Re: WCF endpoint certificate identity
- From: "Tiago Halm" <thalm@xxxxxxxxxxxxxxxxxx>
- Date: Tue, 30 Sep 2008 18:33:38 -0700
Larry,
See here, see if it helps to generate the value (haven't checked):
http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=597530&SiteID=1
Tiago Halm
"Larry" <adcoder@xxxxxxxxxxxxxxxx> wrote in message news:upp5uYxIJHA.4896@xxxxxxxxxxxxxxxxxxxxxxx
There is more to this encoded value than just the public key. As I mentioned previously, the encoded value begins with AwAAAAEAAAAUAAAARF and doesn't have until later in the value MIIE (the start of the public key). It kind of looks like it starts with an encoded thumbprint or signature. I see though that I won't have to change this value unless a new key pair is needed.
Thanks for your help!
"Tiago Halm" <thalm@xxxxxxxxxxxxxxxxxx> wrote in message news:%23t5W0WrIJHA.4600@xxxxxxxxxxxxxxxxxxxxxxxThe encoded value is the public key of the X.509 certificate. The client
uses this public key to encrypt a given message, which the private key owner
(the web service) is able to decrypt.
When the web service owner decides to change the certfificate, this change
will (eventually) involve a change in the public key which will be reflected
in the WSDL. The client should be able to update the reference (re-process
the WSDL) when the certificate changes.
I suspect, but may be wrong, that you may renew the certificate while
maintaining the private/public key pair.
Tiago Halm
"Larry" <adcoder@xxxxxxxxxxxxxxxx> wrote in message
news:uhMmAdqIJHA.456@xxxxxxxxxxxxxxxxxxxxxxx
Sorry about the miss submission.
Like I said, I'm using WCF with my web service calls and use wsHttpBinding
with certificates and set with message encryption. When I create my
service reference, I end up getting an entry something like this in the
<client /> section of the web.config:
<endpoint address="http://<my service address>"
binding="wsHttpBinding" behaviorConfiguration="certConfig"
bindingConfiguration="wsHttpBindingConfig"
contract="<my contract>" name="wsHttpBindingConfig">
<identity>
<certificate encodedValue="<AwAAAAEAAAAUAAAARFl...MIIE...< more of a long
encoded string>" />
</identity>
</endpoint>
The encodedValue in the certificate node is automatically generated for me
when I add the reference (comes from the Svcutil). I'd like to be able to
replace this value when certs are updated. What is this value made up
from and how can I programmatically update it (using c#)? It looks like
it has more than the base64 encoded value of the certificate.
I tried something like this:
byte[] bytes = myCert.Export(X509ContentType.SerializedCert);
string base64Cert = Convert.ToBase64String(bytes);
which did not come out the same as what's in the encodedValue. What am I
missing here? Any suggestions would be greatly appreciated!
Larry
"Larry" <none> wrote in message
news:OETSPlpIJHA.1160@xxxxxxxxxxxxxxxxxxxxxxx
Hello,
I use WCF with my web service calls and all of the communication is
secured with certificates. When I create my service reference, an
endpoint gets created with the correct information. It includes an entry
like this:
.
- Follow-Ups:
- Re: WCF endpoint certificate identity
- From: Larry
- Re: WCF endpoint certificate identity
- Prev by Date: WCF Proxy Server settings not working
- Next by Date: RE: WCF Proxy Server settings not working
- Previous by thread: WCF Proxy Server settings not working
- Next by thread: Re: WCF endpoint certificate identity
- Index(es):
Relevant Pages
|
Loading
