Re: message encryption

---

• From: "Peter Foley" <foleyp@xxxxxxxxxxxxxx>
• Date: Fri, 1 Apr 2005 08:30:13 +1000

---

1. I don't see how it is implicit. The endpoint is either coded in the WSDL
or stored in a config file. Similarly our web services run under specific
user identities (for security, costing etc). Is there a best practice for
mapping the service name to an identity?

2. Is there a way to automate this? The clients are on the intranet.
"Dilip Krishnan" <dkrishnan@xxxxxxxxxxxxxxxxxx> wrote in message
news:uYrY0dZNFHA.2544@xxxxxxxxxxxxxxxxxxxxxxx
> Peter,
>
>> I want to be able to encrypt part of a soap message. I understand I need
>> the public key of the identity running the web service I am sending the
>> message to. My Questions are
>> a) Where do I get the name of the identity I am sending the message to?
>
> This is implicit in nature, just like you know the endpoint of the service
> you are hitting, you will know the identity of the service aswell. By,
> refering to public key you are using PKI (X509 cerficates). So the service
> should give the public cert that the clients need to be using
>
>> b) How do I distribute the web service identity's public keys (in a
>> intranet environment)? Do I use the LocalMachineEnterprise store? How?
>
> Certificate distribution is always a problem. You can export certificates
> on the server using the MMC plug-in for certificates. And then give the
> .cer (containing the public key) files to all the clients.
>> Thanks
>
> --
> HTH
> Regards,
> Dilip Krishnan
> MCAD, MCSD.net
> dkrishnan at geniant dot com
> http://www.geniant.com


.

---

• Follow-Ups:
  • Re: message encryption
    • From: Dilip Krishnan

• References:
  • Re: message encryption
    • From: Dilip Krishnan

• Prev by Date: Policy in WSE2.0 not signing the message
• Next by Date: Re: Duplicate kerberos2 tokens in subsequent web service requests
• Previous by thread: Re: message encryption
• Next by thread: Re: message encryption
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Encrypting the response ... Client picks up the imported server ... public key to encrypt the request OK using my code. ... Settings 2.0>Security tab>Store location for the web service to LocalMachine. ... X.509 Certificates Accessible to WSE' implies that IIS 6 will use an account ... (microsoft.public.dotnet.framework.webservices.enhancements) Re: Dynamically Change URL of web service ... client apps will use the exact same web service, ... What this does is put an entry in the config file, ... > Microsoft MVP - Windows Client ... >> How can I dynamically change this when the client app loads. ... (microsoft.public.dotnet.framework.windowsforms) Re: WS SecureConverstion ... "Sumaira Ahmad" wrote in message ... > the same machine and Web Service B is on a different machine.. ... > WebS B. So he will use B's public key to encrypt. ... For a client when he ... (microsoft.public.dotnet.framework.webservices.enhancements) Query for installed web services ... For several reasons I need a dynamic web service proxy. ... I already done this handling a custom config file. ... publish clear the previuos instalation and delete the config file. ... What I like to do is that somehow query a server for a list of a installed ... (microsoft.public.dotnet.framework.webservices) Re: app config file downloading (not) for winform deployment model ... You cannot remotely clear the config file from the download cache. ... ** An alternative is to make the web service address static. ... thus the url is in the app config file. ... (microsoft.public.dotnet.framework.aspnet.security)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(12)