locked
Certificates Based Client Authentication in Silverlight RRS feed

  • Question

  •  We have Silverlight 4 applications and WCF Services hosted in IIS 7. Silverlight Application shall read data from WCF 4.0 Services hosted in IIS. This was initially developed with intranet users in mind and hence integrated windows authentication is used. Now we want this to be exposed to internet users. We were under assumption that we can use Certificates to authenticate client and map certificates to a windows account. Hence there won’t be any drastic change to our application security.

    But on exploration we did not find a way in Silverlight to support Certificate based Client Authentication. 

    How do we support certificate based client authentication with Silverlight ? 

    Note: I’m not talking about SSL here. We were able to communicate using SSL, but not able to authenticate client using certificates

    Tuesday, April 17, 2012 5:40 AM

Answers

All replies

  • I guess you talk about client side certificates, is that right? They are not supported in Silverlight. I recently came across the same limitation with a WP7 project. Fortunately there is project called BounyCastle http://www.bouncycastle.org/csharp/ that compiles fine under Silverlight and brings all the goodies you need.

    Wednesday, April 18, 2012 1:12 AM
  • Yes. My Silverlight application must use client certificates while talking to WCF services for authentication.

    Thanks for the link.

    Is there any official link from microsoft stating that Silverlight does not support Certificate client authentication?

    Wednesday, April 18, 2012 4:15 AM
  • Hi Ganeshkumar,

    As far as I know, Silverlight dose not support client certificate authentication currently, but WPF does. You may check:

    http://social.msdn.microsoft.com/Forums/en-US/wcf/thread/f3d99884-0358-44fc-8a02-4fdbc911d2cb/

    http://social.msdn.microsoft.com/Forums/en-US/wcf/thread/0d3c844a-cd23-4e40-9b21-590d8ce5f579/ 

    We were able to communicate using SSL, but not able to authenticate client using certificates

    Regarding to your demands, I will suggest you post the thread here, there are more professionals on this issue, so you can get better support there.

    Best Regards,

    Thursday, April 19, 2012 3:38 AM
    Moderator
  • Thanks !! WCF supports certificate. It is Silverlight Framework that does not support certificates. And hence i posted here.

    Do you still feel i should go to WCF forum?

    Monday, April 23, 2012 8:49 AM
  • It is Silverlight Framework that does not support certificates. And hence i posted here.

    Do you still feel i should go to WCF forum?

    Silverlight does not support certificates, you have to achieve the goal with another tech(not with Silverlight), and Windows Communication Foundation (WCF) is a queue which focus on wcf issue, so I will suggest you try post your issue here to get some suggestions.

    Thanks for your understanding.

    Best Regards,

    Monday, April 23, 2012 9:09 PM
    Moderator
  • Hi Ganeshkumar,

    During further research, I found that there are several ways in Silverlight to use client certificate. A sample is HTTPS client certificate can be used via browser stack.

    http://stackoverflow.com/questions/3145759/silverlight-and-ssl-client-certificates

    Sorry for the not comprehensive information above.

    Best Regards,

    Friday, April 27, 2012 5:14 AM
    Moderator