x509certificate - Managing certificates with WCF -

-

we have central wcf service exposing via nettcpbinding duplex comms clients.

we want allow computers on internet communicate wcf service. route going down use x509 certificates secure transport layer , provide client authentication, this:

  <security mode="transport">     <transport clientcredentialtype="certificate"></transport>     <message clientcredentialtype="none"/>   </security>

at moment we're calling "makecert" generate x509 certs, , having specify certificatevalidationmode="peertrust" round fact generated our own self-signed certificates.

my question how should go managing client certificates? don't want each client buy own certificate - there hundreds of them , isn't option. suppose want act our own "root authority", i'm not sure how go this...

if don't want make every client buy certificate trusted certificate provider verisign, other 2 options either generate self-signed certificates have been doing (should used testing) or create own pki (private key infrastructure).

i think creating own pki, in case, way go. others have said in comments:

  1. start setting machine certificate authority:

    • install active directory certificate services (server roles)
    • configure root ca
    • configure cryptography, name , validity ca

  2. then make clients request certificates ca.

  3. you aprove certificate ca point of view.

  4. client installs certificate.

  5. adjust wcf configuration make use of ca , certificates

hope helps.


Comments

Post a Comment

Popular posts from this blog

c# - how to write client side events functions for the combobox items -

-
<dx:aspxcombobox id="aspxcombobox2" runat="server" clientidmode="autoid" selectedindex="-1" onselectedindexchanged="aspxcombobox1_selectedindexchanged1" > <clientsideevents selectedindexchanged="function(s, e) { grid.selectrows();}" /> <items> <dx:listedititem text="selecte rows" /> <dx:listedititem text="unselectall" /> </items> </dx:aspxcombobox> i want write event "unselect all" item in combobox. how can this? you'll need write javascript function iterates thru combo-box , marks selected items false. see select/unselect checkbox fields using pure javascript , html sample code msdn:
Read more

exception - Python, pyPdf OCR error: pyPdf.utils.PdfReadError: EOF marker not found -

-
pypdf throws exception: pypdf.utils.pdfreaderror: eof marker not found i don't need fix pypdf, need eof error cause "except" block execute , skip on file, doesn't work. still causes program stop running. background: batch ocr program pdfs python, pypdf, adobe pdf ocr error: unsupported filter /lzwdecode ... saga continues. i got 10,000 pdfs in folder. ocrd, not. can't tell 'em apart. step 1 figure out ones not ocrd , ocr (see other threads details). so i'm using pypdf. exceptions related unrecognized characters , unsupported filters when try read text. guestimated if throws exception, it's got text in , doens't go in list. problem solved, right? so: pypdf import pdffilewriter, pdffilereader import sys, os, pypdf, re path = 'c:\users\homer\documents\my pdfs' filelist = os.listdir(path) has_text_list = [] does_not_have_text_list = [] pdf_name in filelist: pdf_file
Read more