Re: Web Services, Security, X.509

From: "Sam Santiago" <ssantiago@xxxxxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 8 Jul 2006 10:25:30 -0700

You could create a custom security token manager and/or a custom security
token. The WSE documentation has examples:

http://msdn.microsoft.com/library/default.asp?url=/library/en-us/wse/html/3630a570-6cc2-4d8a-8194-1fe59a0e1e00.asp

Thanks,

Sam

--
_______________________________
Sam Santiago
ssantiago@xxxxxxxxxxxxxxxxxxxxxxxx
http://www.SoftiTechture.com
_______________________________
"Frank V" <jawzx01@xxxxxxxxx> wrote in message
news:1152360702.112938.41790@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Hello Again everyone,

I really could use answers to this. Any insight would be greatly
appricated.

Thanks!
Frank V.
JawzX01[.@.]gmail.com

Frank V wrote:

Hello All,

I can't ask my question without giving a little bit of background.
We have a smart client application which consumes an internet-facing
private web service. (At this time the web service and the client use
WSE 3.0 (specifically usernameOverTransportSecurity) and it is working
well.) The client and web service are secured using a user name and
password which is shared with an existing application. The web service
works over SSL.

My primary question is "Is it possible to create a web service
which will only work with a specific client application? And, if so is
this possible without using a X.509 certificate?"

Finally, if a X.509 certificate is required, which certificate is the
correct type of certificate for a X.509 WSE solution? (I can't find
any definitive information on this)

If further explanation or information is needed, please ask. I will
post as soon as I can.

Thank You,
Frank V.
JawzX01[.@.]gmail.com

Follow-Ups:
- Re: Web Services, Security, X.509
  - From: Frank V

References:
- Web Services, Security, X.509
  - From: Frank V
- Re: Web Services, Security, X.509
  - From: Frank V

Prev by Date: Re: WSE3 proxy not generated on 64-bit Windows
Next by Date: RE: Multiple Policies from one Web Service ?
Previous by thread: Re: Web Services, Security, X.509
Next by thread: Re: Web Services, Security, X.509
Index(es):
- Date
- Thread

Relevant Pages

Re: How to call Web Service Securely
... Maybe I am complicating WSE too much - can you point me to a simple ... you could provide a logon screen in the client app and create a NetworkCredential ... tokens - but that is tied to .NET 2.0 ... make a web method via dialup to my IIS Web Service. ...
(microsoft.public.dotnet.framework.aspnet.security)
Re: Using Microsoft Certificate Server Programatically
... Client contacts server (web service) with encrypted registration ... The server issues the certificate (not sure how the web service ...
(microsoft.public.platformsdk.security)
Re: Quick Start certificate
... I have enabled diagnostics on the client and the web service. ... Did you give your web server identity permission to ... read the certificate on the server? ...
(microsoft.public.dotnet.framework.webservices.enhancements)
Re: WS-Policy and WSE problems!
... WSE client signing using my certificate. ... is set to true in the token manager registered for this token type. ...
(microsoft.public.dotnet.framework.aspnet.webservices)
Re: WSE and X509 trouble
... -- A client can be any client of the web service - but you've got the right ... app, or even another web service. ... policy files and b) a client can also use a policy file. ... > now wizard tell me to choose the certificate to use for client ...
(microsoft.public.dotnet.framework.webservices.enhancements)