I would appreciate if some one answers these queries.
Thanks in advance.
If My web server is SSL enabled, then why should I havea client certificate authentication? what extra security it provides? Can I use client certificate without having SSL connection?
How do I get the Client Certificate? Is it necessary to be issued from the same webservice server i want to use? Or I can get it from any CA e.g verisign?
Is it possible to get free client certificate (not from Microsoft Certificate services)?
Thanks
dinoo 3 1977
>> If My web server is SSL enabled, then why should I havea client
certificate authentication?
The Server certificate provides authenticity of the server, and can also
provide a method of encrypting traffic via SSL. A client side certificate
provides authenticity of the client. eg. If you only issue client side
certificates to certain clients, then you can be sure of who your client is.
With just a server certificate, anybody can access your site, even though
its encrypted traffic, it just means that the traffic is not in plain text. Can I use client certificate without having SSL connection?
I think so but I haven't tried it. The client cert can be valid cert from
any certificate authority that you configure the site to accept. eg.
verisign or your own CA. How do I get the Client Certificate?
It needs to be specially issued from either a wel known CA like verisign or
if you have your own CA setup (Self signed certificates), you can issue your
own client cert, but i needs to be specially requested when issuing the
certificate. > Is it possible to get free client certificate (not from Microsoft
Certificate services)?
Not that I am aware of. Some authorities will issue client certs for short
periods I think. The only real way to get a free one is have your own
certificate authority setup and isue them yourself.
--
- Paul Glavich
Microsoft MVP - ASP.NET
"dinoo" <di***@discussi ons.microsoft.c om> wrote in message
news:87******** *************** ***********@mic rosoft.com... I would appreciate if some one answers these queries. Thanks in advance.
If My web server is SSL enabled, then why should I havea client
certificate authentication? what extra security it provides? Can I use
client certificate without having SSL connection? How do I get the Client Certificate? Is it necessary to be issued from the
same webservice server i want to use? Or I can get it from any CA e.g
verisign? Is it possible to get free client certificate (not from Microsoft
Certificate services)?
Thanks
dinoo
Now I need your further help. I hope i am not troubling a lot.
I setup a SSL on my webserver using versign trial certificate.
My webservices using their proxies (from windows application) works fine with implementing ICertificatePol icy class. But If I configured my site to "Accept client certificate" and try to send the same certificate using proxy.ClientCer tificates.Add method. My webservice never receives the certificate (using the Context.Request .ClientCertific ate). I even do no receive any error?
What could be the cause? I don't know how to get the client certificate from verisign? Can you guide me?
Thanks
Dinesh
"Paul Glavich [MVP - ASP.NET]" wrote: If My web server is SSL enabled, then why should I havea client certificate authentication? The Server certificate provides authenticity of the server, and can also provide a method of encrypting traffic via SSL. A client side certificate provides authenticity of the client. eg. If you only issue client side certificates to certain clients, then you can be sure of who your client is. With just a server certificate, anybody can access your site, even though its encrypted traffic, it just means that the traffic is not in plain text. Can I use client certificate without having SSL connection? I think so but I haven't tried it. The client cert can be valid cert from any certificate authority that you configure the site to accept. eg. verisign or your own CA.
How do I get the Client Certificate? It needs to be specially issued from either a wel known CA like verisign or if you have your own CA setup (Self signed certificates), you can issue your own client cert, but i needs to be specially requested when issuing the certificate. Is it possible to get free client certificate (not from Microsoft
Certificate services)? Not that I am aware of. Some authorities will issue client certs for short periods I think. The only real way to get a free one is have your own certificate authority setup and isue them yourself.
-- - Paul Glavich Microsoft MVP - ASP.NET
"dinoo" <di***@discussi ons.microsoft.c om> wrote in message news:87******** *************** ***********@mic rosoft.com... I would appreciate if some one answers these queries. Thanks in advance.
If My web server is SSL enabled, then why should I havea client certificate authentication? what extra security it provides? Can I use client certificate without having SSL connection? How do I get the Client Certificate? Is it necessary to be issued from the
same webservice server i want to use? Or I can get it from any CA e.g verisign? Is it possible to get free client certificate (not from Microsoft Certificate services)?
Thanks
dinoo
Replied to your personal address, since you sent it to mine.
--
- Paul Glavich
Microsoft MVP - ASP.NET
"dinoo" <di***@discussi ons.microsoft.c om> wrote in message
news:DF******** *************** ***********@mic rosoft.com... Now I need your further help. I hope i am not troubling a lot.
I setup a SSL on my webserver using versign trial certificate. My webservices using their proxies (from windows application) works fine
with implementing ICertificatePol icy class. But If I configured my site to
"Accept client certificate" and try to send the same certificate using
proxy.ClientCer tificates.Add method. My webservice never receives the
certificate (using the Context.Request .ClientCertific ate). I even do no
receive any error? What could be the cause? I don't know how to get the client certificate
from verisign? Can you guide me? Thanks
Dinesh
"Paul Glavich [MVP - ASP.NET]" wrote:
> If My web server is SSL enabled, then why should I havea client certificate authentication? The Server certificate provides authenticity of the server, and can also provide a method of encrypting traffic via SSL. A client side
certificate provides authenticity of the client. eg. If you only issue client side certificates to certain clients, then you can be sure of who your client
is. With just a server certificate, anybody can access your site, even
though its encrypted traffic, it just means that the traffic is not in plain
text.> Can I use client certificate without having SSL connection? I think so but I haven't tried it. The client cert can be valid cert
from any certificate authority that you configure the site to accept. eg. verisign or your own CA.
How do I get the Client Certificate? It needs to be specially issued from either a wel known CA like verisign
or if you have your own CA setup (Self signed certificates), you can issue
your own client cert, but i needs to be specially requested when issuing the certificate.
> > Is it possible to get free client certificate (not from Microsoft Certificate services)? Not that I am aware of. Some authorities will issue client certs for
short periods I think. The only real way to get a free one is have your own certificate authority setup and isue them yourself.
-- - Paul Glavich Microsoft MVP - ASP.NET
"dinoo" <di***@discussi ons.microsoft.c om> wrote in message news:87******** *************** ***********@mic rosoft.com... I would appreciate if some one answers these queries. Thanks in advance.
If My web server is SSL enabled, then why should I havea client certificate authentication? what extra security it provides? Can I use client certificate without having SSL connection? How do I get the Client Certificate? Is it necessary to be issued from
the same webservice server i want to use? Or I can get it from any CA e.g verisign? Is it possible to get free client certificate (not from Microsoft Certificate services)?
Thanks
dinoo
This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: luciano |
last post by:
Hi everyone,
I want to create a application and a webservice, application connect to
web service to activate, web sevice will create a certificate to
authenticate this client, for each transaction between client anh
server, server will check cerfiticate of client connect to it. How do i
do that? Thanks for your reply.
|
by: Krishna |
last post by:
Well, I got it working when running against my test server (IIS5 W2K
svr, I will attach a sample of the code at the bottom of this
message), but now I'm connecting to our client (Apache) I'm getting
the following error:
An unhandled exception of type 'System.Net.WebException' occurred in
system.dll
Additional information: The underlying connection was closed: Unable
to connect to the remote server.
|
by: Russ |
last post by:
I have set up a C# web application that runs on my test Web Server
(Windows 2003 Server, Web Edition). It in turn calls a web service
running on the internal network.
Now I want to issue a client certificate to each client connecting to
the web app, and use it to authenticate and identify the clients on
the web server (and use the SSL for secure encrypted exchanges).
There is no issue requiring SSL between the web server and the back...
|
by: Eric Rosenberger |
last post by:
I am developing a web service that uses SSL client certificates for
authentication. It works fine with self-generated certificates, but our
customer's CA wants specific information about what exactly is needed in the
certificate for it to work.
I've found that including the extended key usage OID for client
authentication allows IIS and .NET to properly treat the certificate as a
client certificate, but are there other possibilities? For...
|
by: Ron Fluegge |
last post by:
We are developing a Winforms app that retrieves data from our company's SQL
Server 2000 database via a webservice.
We are considering using something like client certificates so that we have
a clear indication that the client using the software is authenticated.
Even though it is a Winforms app, we can't use the user's Windows login ID
since it's on a client/customer's machine and we do not want to have access
to their loginIDs. We will...
| |
by: |
last post by:
Hi all,
HttpWebRequest, and SoapHttpClientProtocol both expose a
ClientCertificates property, which can hold multiple client certificates,
but on the service side, it can only receive one client certificate, since
it derives System.Web.Services.WebService class, and it's
Context.Request.ClientCertificate is a single HttpClientCertificate object,
is there a way to receive all the client certificates that is sent in the
request? or does IIS...
|
by: WebServiceSecurity |
last post by:
The issue involves the following technologies: -
1. .NET 2.0 Framework
2. WSE2.0 (WS-Security)
3. X.509 certificates
4. BEA Weblogic 8.1.5
|
by: b.fokke |
last post by:
I'd like to connect to a webservice using TLS/SSL. I have two separate
client certificates:
1. A certificate for digital verification
2. A certificate for encryption.
When I use the first one (i.e. add it to the ClientCertificates
collection of the web request), I can establish a connection but I get
a WebException: "Underlying connection closed: Could not establish
trust relationship". When I use the second one I can't even establish a...
|
by: steveS |
last post by:
Hi all,
I'm having trouble connecting to a Java web service using HttpWebRequest. I
get the error message "The request was aborted: Could not create SSL/TLS
secure channel". The Java service requires a client certificate which they
have provided in .cer format. I can connect ok to their test service which
uses SSL but doesnt require a client certificate with the code below.
I dont have great deal of knowledge about client certificates...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it.
First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed.
This is as boiled down as I can make it.
Here is my compilation command:
g++-12 -std=c++20 -Wnarrowing bit_field.cpp
Here is the code in...
| |
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth.
The Art of Business Website Design
Your website is...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules.
He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms.
Adolph will...
|
by: conductexam |
last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one.
At the time of converting from word file to html my equations which are in the word document file was convert into image.
Globals.ThisAddIn.Application.ActiveDocument.Select();...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
|
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
|
by: muto222 |
last post by:
How can i add a mobile payment intergratation into php mysql website.
| |
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
| |