It seems that I have scoured the net and came up empty
handed.
I have an ASP.net app that posts xml to another company's
servlet. For some transactions, they do not require a
certificate, but others do. I started building this app
with the transactions that did not require the cert, but
put in the code to use the cert anyhow. I have been
running for several months thinking that I was using my
cert, but now that I'm trying to build the transactions
that REQUIRE the cert- It turns out that the cert is not
ACTUALLY being used.
I called my contact at the other company and they say
their system never sees my cert being used.
I'm using what appears to be the 'standard' code that
eveyone else uses:
//############### ############### ############### ###########
########
...Load XML
HttpWebRequest objRequest = (HttpWebRequest )
WebRequest.Crea te
("https://other.large.com pany.com/theirServlet");
objRequest.Meth od = "POST";
objRequest.Cont entLength = xmlDoc.InnerXml .Length;
objRequest.Cont entType = "text/xml";
objRequest.Time out = 30000;
objRequest.Clie ntCertificates. Add
(X509Certificat e.CreateFromCer tFile
(Global.appPath +@"cert.cer") );
//
//ServicePointMan ager.Certificat ePolicy = new CertPolicy
();
//
Response.Write
("certcount="+o bjRequest.Clien tCertificates.C ount.ToString
()+"<BR>");
...POST XML
...Get Response
...Process Response XML
ServicePoint sp = ServicePointMan ager.FindServic ePoint
(objRequest.Req uestUri);
if(sp.ClientCer tificate!=null) Response.Write
("sp.ClientCert ificate = "+sp.ClientCert ificate.GetName ()
+"<BR>");
else Response.Write( "ClientCertific ate is null<BR>");
if(sp.Certifica te!=null) Response.Write( "sp.Certifi cate
= "+sp.Certificat e.ToString(true )+"<BR>");
else Response.Write( "Certificat e is null<BR>");
//############### ############### ############### ###########
########
RESPONSE.WRITE OUTPUTS:
certcount=1
ClientCertifica te is null
sp.Certificate = CERTIFICATE: Format: X509 Name: C=US,
S=Missouri, O=.....(edited out- this is the other
company's cert)
I've tried the "new CertPolicy()" route, but it doesn't
change anything. The Response.Write shows "certcount= 1",
so it seems that it is loading it. I used GetName() on it
and it was the correct cert too. I'm not sure if
sp.Certificate sould have MY cert listed or theirs (as it
does).
The cert is installed on the server. I installed the
cert.pfx file and then exported it to cert.cer. In old
ASP, I had to use winhttpcertcfg. exe to give the
IWAM_COMPUTER user access to the cert, so I did this
again. But still nothing.
Oddly, the cert is under CURRENT_USER\MY where as before
it was under LOCAL_MACHINE\M Y. Does this make a
difference?
I read somewhere that HttpWebRequest looks at the cert I
loaded, finds it in the store, and then uses it.
This is the only way for it to get the Private Key? Is
this true?
If so, then how do I know if it found it in the store? or
didn't?
How else can I possibly make a connection like
this!? .cer files don't have the Private Key. The Private
Key is required!
It is very hard to find the problem when there isn't any
kind of 'status' or monitoring of the actual connection
AND no errors. The other company just returns XML
saying "Basic authorization is not allowed for this
transaction".
-Hope someone can help!
-Will.K 0 1107 This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: Matt Frame |
last post by:
I am working on a special ASP.Net application that receives files from
customers. The connection is made via HTTPS and the client sends the file
as a POST to my ASP.Net listener. All of this works fine. Now I am looking
at how to validate the clients certificate programmatically. The client
application sends to me with something like:
....
Dim myHttp As HttpWebRequest =
CType(WebRequest.Create(https://myserver/Receive.aspx),...
|
by: Bob |
last post by:
I'm building a .NET web service which requires client certificate for strong
security. I set IIS to require SSL and client certificate (under site
properties in IIS admin, Directory Security tab, Secure Communication,
Edit... button. then check Require Secure Channel and Require Client
Certificates). Then in my client side code, I add my client certificate to
the property HttpWebClientProtocol.Certificates. However, I keep getting a...
|
by: JIM.H. |
last post by:
Hello,
I am trying to create a certificate for our internet for our employees so
that they can login to system from home. Do I have to go, for example,
VeriSign to get a certificate? Can I create my own certificate and use it
since it is not actually a public web site?
Thanks,
|
by: jakobsgaard |
last post by:
It is possible to Map a certificate to a Active Directory User Account from
DotNet?
Please provide an example.
Best regards,
Ejnar Jakobsgaard
-------------------------------------------------
To map a certificate to a user account
Open Active Directory Users and Computers.
|
by: SisAndz |
last post by:
Hello,
I'm trying to do a secure connect to the site https://212.77.100.18/p/ with
..net 2.0 HttpWebRequest class,
unfortunately for some reason I'm not able to do that - WebException is
thrown with inner exception message of "An existing connection was forcibly
closed by the remote host."
I hoped I'll solve my problem with RemoteCertificateValidationCallback
delegate which always returns "true", but it isn't called at all for this...
| |
by: John Nagle |
last post by:
The Python SSL object offers two methods from obtaining
the info from an SSL certificate, "server()" and "issuer()".
The actual values in the certificate are a series of name/value
pairs in ASN.1 binary format. But what "server()" and "issuer()"
return are strings, with the pairs separated by "/". The
documentation at "http://docs.python.org/lib/ssl-objects.html"
says "Returns a string containing the ASN.1 distinguished name identifying...
|
by: alpana.dhole |
last post by:
I have made a ActiveX control for commericial application. A Drag and
Drop component for Mail server.
I need to host the component in Internet Explorer.
When a user opens a mail it should prompt the user to download and
register the Drag and Drop activeX component.
This should be a trivial program. Please let me know how is it done.
|
by: ucb01 |
last post by:
Hi,
I am working with Visual Studio 2005 in C#.
Using makecert I create a self-signed certificate A with a private key then a certificate B based on A. The first is installed in the 'Certificate Authorities .. ' store, the second in the 'Personal' one.
My application need to use the certificate B to sign binary data. In debug mode, my application runs perfectly (under Cassini, VS web server) but after deployment there is no way to...
|
by: =?Utf-8?B?SGVyYg==?= |
last post by:
For some reason my application now requires that I "Sign the ClickOnce
manifests". I don't know that it ever has before. I clicked the "Create Test
Certificate" and after a reinstall everything is hunky dorey.
Now I am trying to obtain a certificate that is "trusted" and I don't know
how to go about doing that. I understand that my temporary certificate will
expire in a year, I'd rather go through the reinstall now rather than wait a...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth.
The Art of Business Website Design
Your website is...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
| |
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own....
Now, this would greatly impact the work of software developers. The idea...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules.
He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms.
Adolph will...
|
by: conductexam |
last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one.
At the time of converting from word file to html my equations which are in the word document file was convert into image.
Globals.ThisAddIn.Application.ActiveDocument.Select();...
|
by: TSSRALBI |
last post by:
Hello
I'm a network technician in training and I need your help.
I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs.
The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols.
I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
|
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
| |
by: muto222 |
last post by:
How can i add a mobile payment intergratation into php mysql website.
| |