Manual Credential Validation in SChannel RRS feed

  • Question

  • While using ISC_REQ_MANUAL_CRED_VALIDATION, How can i get peer certificate during handshake?

     We used sChannel in our client application to communicate with server. Our requirement is to validate peer certificate during handshake itself.

    We used QueryContextAttributes() with SECPKG_ATTR_REMOTE_CERT_CONTEXT parameter during handshake( after server hello received with Server certificate ) but API failed with INVALID handle value as error. But this API succeeds after handshake loop with same handle. Please refer the below sequence diagram

    Wednesday, July 8, 2020 4:46 AM

All replies

  • Hi Ramseem,

    Thanks for posting on MSDN forum. Would you mind sharing a mini code sample to help reproducing this issue?

    Regards & Fei

    "Win32 API" forum will be migrating to a new home on Microsoft Q&A !
    We invite you to post new questions in the "Win32 API" forum’s new home on Microsoft Q&A !
    For more information, please refer to the sticky post.

    Monday, July 20, 2020 5:46 AM