locked
WCF service certificate authentication RRS feed

  • Question

  • User88744855 posted

    when wcf service will use certificate then how the client will send certificate to wcf service which will consume wcf service. this idea is not clear to me that when wcf client will call wcf service first time then how client will send certificate to service? please discuss how people work with wcf & certificate.

    also guide me briefly that what are the step we need to do to attach certificate with our wcf service?

    how wcf client end can send certificate to wcf service when they make a call?

    do we need at all anything to configure for certificate at wcf client end?

    one guy told me

    When use the certificate authentication in the wcf, then in the serive side and client side, you will need to install the service certificate and the client certificate. Then in the client side, the client will use the service public key to encrypt the message and send to the service, then the service will use the service private key to decrypt the message. And in the service side, it will use the the client public key to encrypt the message and send to the client. Then the client will use the client private key to decrypt the message.

    if this is the limitation of certificate authentication that we need to install certificate at both end then we can use certificate authentication in very limited case. any tell me how to use certificate authentication when we have no control over the client who will consume the service. when client is unknown they how they can send the certificate to our service.

    actually i am trying to know how people manage to implement certificate authentication in real life when they do not have a control over the client who will be using their service. thanks

    Tuesday, April 1, 2014 10:22 AM

Answers