security - WCF X509 getting "Could not establish trust relationship for the SSL/TLS secure channel with authority" -

-

i'm developing wcf web service in c#, , test client go it. web service hosted in iis on server , test client running on desktop pc. able make calls web service client using http, trying working https , x509 certificates. when try make calls now, "could not establish trust relationship ssl/tls secure channel authority '192.168.5.5'". here i've done far try setup:

created self-signed certificate , key use certificate root:

makecert -n "cn=roottest" -r -sv roottest.pvk roottest.cer

created certificates/keys signed above root server , client:

makecert -iv roottest.pvk -n "cn=servertest" -ic roottest.cer -sky exchange -pe -sv servertest.pvk servertest.cer makecert -iv roottest.pvk -n "cn=clienttest" -ic roottest.cer -sky exchange -pe -sv clienttest.pvk clienttest.cer

imported roottest.cer "trusted root" under "local computer" on both server , client pc using mmc.

created pfx files server , client certificate/keys:

pvk2pfx.exe -pvk servertest.pvk -pi "mypassword" -spc servertest.cer -pfx servertest.pfx -po "mypassword" pvk2pfx.exe -pvk clienttest.pvk -pi "mypassword" -spc clienttest.cer -pfx clienttest.pfx -po "mypassword"

imported servertest.pfx on server under "local computer", "personal" using mmc.

imported clienttest.pfx on client pc under "local computer", "personal" using mmc.

referenced "servertest" certificate in web.config on server:

  <system.servicemodel> <services>   <service name="mytestservice.service" behaviorconfiguration="mytestservicebehavior">     <endpoint address=""               binding="basichttpbinding"               bindingconfiguration="securebasichttpbinding"               contract="mytestservice.service.iservicecontract" />     <endpoint address="mex" binding="mexhttpbinding" contract="imetadataexchange"/>   </service> </services> <behaviors>   <servicebehaviors>       <behavior name="mytestservicebehavior" >         <servicemetadata httpgetenabled="true" />         <servicedebug includeexceptiondetailinfaults="true" />         <servicecredentials>           <servicecertificate storelocation="localmachine" storename="my" findvalue="cn=servertest" />         </servicecredentials>       </behavior>   </servicebehaviors> </behaviors> <bindings>    <basichttpbinding>       <binding name="securebasichttpbinding">          <security mode="transportwithmessagecredential">             <message clientcredentialtype="certificate" />          </security>       </binding>    </basichttpbinding> </bindings>

referenced "clienttest" certificate in app.config on pc client:

  <system.servicemodel> <client>   <endpoint address="https://192.168.5.5/mytestservice/service.svc"             behaviorconfiguration="mytestclientbehavior"             binding="basichttpbinding"             bindingconfiguration="securebasichttpbinding"             contract="mytestservice.service.iservicecontract" /> </client> <behaviors>   <endpointbehaviors>     <behavior name="mytestclientbehavior" >       <clientcredentials>         <clientcertificate storelocation="localmachine" storename="my" findvalue="cn=clienttest" />         <servicecertificate>           <authentication revocationmode="nocheck" />         </servicecertificate>        </clientcredentials>     </behavior>   </endpointbehaviors> </behaviors> <bindings>   <basichttpbinding>     <binding name="securebasichttpbinding">       <security mode="transportwithmessagecredential">         <message clientcredentialtype="certificate" />       </security>     </binding>   </basichttpbinding> </bindings>

what doing wrong or missing? in advance replies.

from client system, use browser (for example ie) navigate endpoint wcf service hosted. browser should tell certificate not trusted , why. enter image description here

then click 'continue website' , view certificate clicking 'certificate error' in navigation bar , click 'view certificates' link. enter image description here

the certificate view should tell why certificate not trusted.


Comments

Post a Comment

Popular posts from this blog

java - Static nested class instance -

-
this question has answer here: java inner class , static nested class 23 answers i came across in java, know static nested class why create instance of 'static'. isn't whole idea of 'static' use without instance? understand concept of inner classes, why (and frankly how possible to) create 'instance' of 'static' member @ ? why this: 1- outerclass.staticnestedclass nestedobject = new outerclass.staticnestedclass(); 2- nestedobject.anestedclassmethod(); and not this: 1- outerclass outerinstance=new outerclass(); 2- outerinstance.staticnestedclass.anestedclassmethod(); use on inner classes, keyword static indicates can access inner class without instance of outer class. for example: public class outer { public static class inner { /* code here. */ } } with construction, can create instance of inn
Read more

c# - Bluetooth LE CanUpdate Characteristic property -

-
i building xamarin.forms cross platform mobile app, uses monkey.robotics bluetoth low energy functionality. connecting mbed based implimentation of custom gatt service . in xamarin c#, triggers characteristic. canupdate property in monkey.robotics? this standard example c# based on: if (characteristic.canupdate) { characteristic.valueupdated += (s, e) => { debug.writeline("characteristic.valueupdated"); device.begininvokeonmainthread( () => { updatedisplay(characteristic); }); isbusy = false; // spin until first result received }; isbusy = true; characteristic.startupdates(); } this has been working, since changed own custom gatt service connecting to, canupdate property false. property , how triggered? me debugging gatt service code. thanks monkey.robotics open sour
Read more

JavaScript - Replace variable from string in all occurrences -

-
ok, know if have character '-' , want remove in places in string javascript, ... someword = someword.replace(/-/g, ''); but, when applying array of characters, s not working ... const badchars = ('\/:*?"<>|').split(''); let filename = title.replace(/ /g, '-').tolocalelowercase(); (let item = 0; item < badchars.length; item++) { // below not work global '/ /g' filename = filename.replace(/badchars[item]/g, ''); } any ideas? /badchars[item]/g looks badchars , literally, followed i , t , e , or m . if you're trying use character badchars[item] , you'll need use regexp constructor, , you'll need escape regex-specific characters. escaping regular expression has been well-covered . using that: filename = filename.replace(new regexp(regexp.quote(badchars[item]), 'g'), ''); but , don't want that. want character class: let filename = title.replac
Read more