none
.NET Remoting and PrivateKey access for X509 Cert RRS feed

  • Question

  • we have remoting in our .NET application and the remote objects are hosted
    under IIS.  The remote object needs to access the private key for a Cert. Even
    when we give the account under which these objects run, access to the machine
    keys on this cert, it is not able to get the key.  The server is Windows server
    2008 R2.

    Works on local machine. But can replicate on local too, if permissions are
    taken out.

    Anyone ​encountered similar issue, please ​let me know any feedback/suggestions


    Thanks

    Wednesday, March 25, 2015 7:48 PM

Answers

  • Hi,

    For this scenario, there is a permission set exists in Windows which controls the access of the private key of any certification. This permission belongs to a Windows User Account.  If the application deployed under IIS, the security environment is different that a normal desktop application environment.

    You may need grant the necessary permission to the right account.

    For more information, you could refer to:

    https://jzo001.wordpress.com/2012/12/21/certificate-private-key-issue/

    Regards
    Thursday, March 26, 2015 9:00 AM
    Moderator