none
Are "TransportWithMessageCredential" and "SslRequireCert" mutually exclusive? RRS feed

  • Question

  • <security>
      <access sslFlags="Ssl, SslNegotiateCert, SslRequireCert"/>
    </security>
    We have a service that requires an SSL certificate from the client as shown in the above snippet. We would additionally like to have message UserName authentication enabled as shown in the following basicHttpBinding configuration:
    <binding>
      <security mode="TransportWithMessageCredential">
        <transport clientCredentialType="Certificate"/>
        <message clientCredentialType="UserName"/>
      </security>
    </binding>
    I am able to use message credentials only if "SslRequireCert" is removed from the configuration, and I am able to have "SslRequireCert" enabled only if I change the security mode to "Transport" (disable message credentials), but why can't I have both?
    Tuesday, April 23, 2013 11:01 PM

Answers

  • Hi,

    Please try set certificates as 'Accept' in IIS. As said in this thread, if you have set IIS using SSL/HTTPS and require client certificate, you need set the security mode to "Transport".

    If this do not solve your issue, please share the error message here.

    Best Regards.


    Haixia
    MSDN Community Support | Feedback to us
    Develop and promote your apps in Windows Store
    Please remember to mark the replies as answers if they help and unmark them if they provide no help.

    Wednesday, April 24, 2013 9:45 AM
    Moderator