473,321 Members | 1,622 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,321 software developers and data experts.

Can not get Client Certificates to work with .NET COM+ component

I have a problem with .NET COM+ component which cannot access the private
key of the client certificate. The problem seems to be that when the user on
which privileges the COM+ server application is running is logged in, the
certificate can be accessed. But as soon as the user logs out the I get
forbidden errors on the server.

I've tried to put the certificate in the users personal store and in the
local machine personal store and granting privileges to it using
WinHttpCertCfg.exe.

I'm not entirely sure the problem is caused by the accessing the certificate
store, but in my mind it seems to be the only explanation on this.

The same source code is running also as a web service (we have COM+ Client
and Web Service Client which both are using the same DLL to call the web
service). But with the web service we haven't had any problems.

The public key of the certificate is exported to directory accessible by the
user running the component and the code to put the certificate to the request
is as follows:
this.m_ecdssrv.ClientCertificates.Add( X509Certificate.CreateFromCertFile(
str_CertPath ) );

On the end point server the eventlog shows:
2008-01-31 06:30:08 192.168.158.2 POST /ecdsweb/ECDSResolver.asmx - 443 -
195.24.29.178
Mozilla/4.0+(compatible;+MSIE+6.0;+MS+Web+Services+Client+ Protocol+1.1.4322.2407)
403 7 5

PS. I thought that this problem is caused by server so I posted this to
windows server forum where they thought that the problem is related to our
component and not to a server.

Feb 1 '08 #1
1 1583
"Tapio Lindqvist" <Tapio Li*******@discussions.microsoft.comwrote in
message news:81**********************************@microsof t.com...
>I have a problem with .NET COM+ component which cannot access the private
key of the client certificate. The problem seems to be that when the user
on
which privileges the COM+ server application is running is logged in, the
certificate can be accessed. But as soon as the user logs out the I get
forbidden errors on the server.

I've tried to put the certificate in the users personal store and in the
local machine personal store and granting privileges to it using
WinHttpCertCfg.exe.

I'm not entirely sure the problem is caused by the accessing the
certificate
store, but in my mind it seems to be the only explanation on this.

The same source code is running also as a web service (we have COM+ Client
and Web Service Client which both are using the same DLL to call the web
service). But with the web service we haven't had any problems.

The public key of the certificate is exported to directory accessible by
the
user running the component and the code to put the certificate to the
request
is as follows:
this.m_ecdssrv.ClientCertificates.Add( X509Certificate.CreateFromCertFile(
str_CertPath ) );

On the end point server the eventlog shows:
2008-01-31 06:30:08 192.168.158.2 POST /ecdsweb/ECDSResolver.asmx - 443 -
195.24.29.178
Mozilla/4.0+(compatible;+MSIE+6.0;+MS+Web+Services+Client+ Protocol+1.1.4322.2407)
403 7 5

PS. I thought that this problem is caused by server so I posted this to
windows server forum where they thought that the problem is related to our
component and not to a server.
I agree. This looks like a component problem. I don't see that it has
anything at all to do with web services, so perhaps you should post in the
microsoft.public.dotnet.framework.component_servic es newsgroup.
--
--------------------------------------------------------------------------------
John Saunders | MVP - Windows Server System - Connected System Developer

Feb 1 '08 #2

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

1
by: luciano | last post by:
Hi everyone, I want to create a application and a webservice, application connect to web service to activate, web sevice will create a certificate to authenticate this client, for each...
4
by: Matt Frame | last post by:
I am working on a special ASP.Net application that receives files from customers. The connection is made via HTTPS and the client sends the file as a POST to my ASP.Net listener. All of this...
1
by: Krishna | last post by:
Well, I got it working when running against my test server (IIS5 W2K svr, I will attach a sample of the code at the bottom of this message), but now I'm connecting to our client (Apache) I'm...
0
by: dinoo | last post by:
Can some body help me out? I am trying to use client certificates in a Webservice. But some how i am not able to make it. I went through the msdn resources but i think some one needs to help me...
5
by: Kenneth P | last post by:
Hi all, I want to ensure some security in my asp.net apps. I wanna know that you is you comsuming my asp.net app. That's why I'm interested in finding out various ways to solve that problem....
1
by: Deepak | last post by:
We retrieve data from a company called XYZ through httpwebrequest. The program is coded using VB.NET They have given a certificate to install. This certificate is included with the request...
5
by: | last post by:
Hi all, HttpWebRequest, and SoapHttpClientProtocol both expose a ClientCertificates property, which can hold multiple client certificates, but on the service side, it can only receive one client...
1
by: WebServiceSecurity | last post by:
The issue involves the following technologies: - 1. .NET 2.0 Framework 2. WSE2.0 (WS-Security) 3. X.509 certificates 4. BEA Weblogic 8.1.5
3
by: mzarlenga | last post by:
I have a WCF .NET 3.0 self-hosted service and client. Both client and server are on the same system. My service opens a secure endpoint and is configured to demand a client-side certificate: ...
0
by: DolphinDB | last post by:
Tired of spending countless mintues downsampling your data? Look no further! In this article, you’ll learn how to efficiently downsample 6.48 billion high-frequency records to 61 million...
0
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
1
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: Vimpel783 | last post by:
Hello! Guys, I found this code on the Internet, but I need to modify it a little. It works well, the problem is this: Data is sent from only one cell, in this case B5, but it is necessary that data...
0
by: ArrayDB | last post by:
The error message I've encountered is; ERROR:root:Error generating model response: exception: access violation writing 0x0000000000005140, which seems to be indicative of an access violation...
1
by: PapaRatzi | last post by:
Hello, I am teaching myself MS Access forms design and Visual Basic. I've created a table to capture a list of Top 30 singles and forms to capture new entries. The final step is a form (unbound)...
1
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
1
by: Shællîpôpï 09 | last post by:
If u are using a keypad phone, how do u turn on JavaScript, to access features like WhatsApp, Facebook, Instagram....
0
by: af34tf | last post by:
Hi Guys, I have a domain whose name is BytesLimited.com, and I want to sell it. Does anyone know about platforms that allow me to list my domain in auction for free. Thank you

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.