We have got stuck in our development of a web service client with wse 2.0 sp3.
Its a secure webservice over ssl with WS-Trust and WS-Security.
We get SecurityException: WSE537 and cant get past this.
Have searched the all over the web but cant find anyone with a similar issue.
When we send a RequestSecurityToken this error message shows in the console:
(partly in swedish)
Ohanterat undantag: Microsoft.Web.Services2.Security.SecurityFault: The
security
token could not be authenticated or authorized --->
System.Security.SecurityExc
eption: WSE537: The certificate's trust chain could not be verified with the
fol
lowing reason: Ett nödvändigt certifikat är inte inom sin giltighetstid när
det
verifieras mot den aktuella systemklockan eller tidsstämpeln i den signerade
fil
en.
..
at Microsoft.Web.Services2.Security.X509.X509Certific ateChain.Verify()
at Microsoft.Web.Services2.Security.Tokens.X509Securi tyToken.VerifyTrust()
at Microsoft.Web.Services2.Security.Tokens.X509Securi tyToken.Verify()
at
Microsoft.Web.Services2.Security.Tokens.X509Securi tyTokenManager.VerifyTok
en(SecurityToken securityToken)
at
Microsoft.Web.Services2.Security.Tokens.SecurityTo kenManager.LoadBinarySec
urityToken(XmlElement element)
--- Slut på stackspårning för interna undantag ---
at
Microsoft.Web.Services2.Security.Tokens.SecurityTo kenManager.LoadBinarySec
urityToken(XmlElement element)
at
Microsoft.Web.Services2.Security.Tokens.SecurityTo kenManager.GetTokenFromX
ml(XmlElement element)
at Microsoft.Web.Services2.Security.Security.LoadToke n(XmlElement
element, Se
curityConfiguration configuration, Int32& tokenCount)
at Microsoft.Web.Services2.Security.Security.LoadXml( XmlElement element)
at
Microsoft.Web.Services2.Security.SecurityInputFilt er.ProcessMessage(SoapEn
velope envelope)
at Microsoft.Web.Services2.Pipeline.ProcessInputMessa ge(SoapEnvelope
envelope
)
at
Microsoft.Web.Services2.Messaging.SoapClient.SendR equestResponse(String me
thodname, SoapEnvelope envelope)
at
Microsoft.Web.Services2.Security.SecurityTokenServ iceClient.RequestSecurit
yToken(SecurityTokenMessage request, String methodName)
at
Microsoft.Web.Services2.Security.SecurityTokenServ iceClient.IssueSecurityT
oken(RequestSecurityToken request)
The swedish error message is in english(with kinda bad translation)
A necessary certifikate is not in valid when verified against the actual
systemtime or the timestamp in the signed file.
Dunno wich certificate they mean... all we are using are valid?
Anyone who is able to push us in the right direction?