How to create a certificate to use with SslStream AuthenticateAsServer without importing

最新推荐文章于 2021-07-29 03:16:27 发布
最新推荐文章于 2021-07-29 03:16:27 发布
阅读量307 收藏
点赞数
文章标签: c#
原文链接:http://www.cnblogs.com/gucnbar/p/certificate.html
版权

Q:

I'm lost in a twisty maze of certificates and private keys.

I am writing a server in C#. I want it to accept SSL connections. For test purposes, I want to generate a certificate for "localhost", and use that certificate for the server. Ideally I don't want to pollute my certificate store, so I just want a file, or files, on disk that the C# code can load to provide the certificate.

Everything I have tried (using cookbook approaches suggested by web searches) either gives me "The credentials supplied to the package were not recognized" or "The server mode SSL must use a certificate with the associated private key."

Is there a way to generate a certificate and private key, and subsequently to load them into an X509Certificate object without also loading them into my machine certificate store?

 

 

A:

In the end, I ran the following to create a server.pfx file:

makecert.exe -r -pe -n "CN=localhost" -sky exchange -sv server.pvk server.cer pvk2pfx -pvk server.pvk -spc server.cer -pfx server.pfx

Then I loaded it in code with:

certificate = new X509Certificate2("server.pfx", "password");

(I didn't actually hard code the password like that :-)

The trick was to know that I needed a pfx file, and that I needed to load it using the X509Certificate2 class, rather than X509Certificate.

 

original url:https://stackoverflow.com/questions/14214396/how-to-create-a-certificate-to-use-with-sslstream-authenticateasserver-without-i

转载于:https://www.cnblogs.com/gucnbar/p/certificate.html

dekjj123456
关注
linux渗透测试常用命令
学-> 思->用
08-07 118
【代码】linux渗透测试常用命令。
centos 配置证书_如何在CentOS 8上设置和配置证书颁发机构(CA)
08-16 3866
centos 配置证书 介绍 (Introduction) A Certificate Authority (CA) is an entity responsible for issuing digital certificates to verify identities on the internet. Although public CAs are a popular choice for ...
证书的应用之一 —— TCP&SSL通信实例及协议分析(上)
weixin_30653023的博客
06-20 554
SSL(Security Socket Layer)是TLS(Transport Layer Security)的前身,是一种加解密协议,它提供了再网络上的安全传输,它介于网络通信协议的传输层与应用层之间。 为实现TCP层之上的ssl通信,需要用到数字证书。本文通过具体例子来说明如何使用数字证书来实现网络上的安全传输。需要用到.net提供的SslStream, TcpListener,...
c# sslstream
David
01-03 3810
SslStream.AuthenticateAsServer 由服务器调用,使用指定的证书、要求和安全协议对服务器和客户端(可选)进行身份验证。 SslStream.AuthenticateAsServer (X509Certificate) serverCertificate:用于对服务器进行身份验证的证书; 默认使用Default进行身份验证,身份验证过程中不检查证书吊销列表;
【转】证书的应用之一 —— TCP&SSL通信实例及协议分析(上)
diaodia9980的博客
04-01 228
原文链接 SSL(Security Socket Layer)是TLS(Transport Layer Security)的前身,是一种加解密协议,它提供了再网络上的安全传输,它介于网络通信协议的传输层与应用层之间。 为实现TCP层之上的ssl通信,需要用到数字证书。本文通过具体例子来说明如何使用数字证书来实现网络上的安全传输。需要用到.net提供的SslStream, T...
How to enable LDAP over SSL with a third-party certification authority
weixin_34107955的博客
07-02 345
http://support.microsoft.com/default.aspx?scid=kb;en-us;321051 There is no user interface for configuring LDAPS. Installing a valid certificate on a domain controller permits the LDAP service to l...
SSL/TLS Configuration How-To
BLOG域名:programb.blog.csdn.net
04-24 1278
Tomcat Home The Apache Software Foundation Apache Tomcat 9 Version 9.0.34, Apr 3 2020 Links Docs Home FAQ User Comments User Guide 1) Introduction 2) Setup 3) First webapp 4) Deployer 5) Manager 6) H...
SSL/TLS Configuration How-To Table of Contents
BLOG域名:programb.blog.csdn.net
05-19 389
Quick Start Introduction to SSL/TLS SSL/TLS and Tomcat Certificates General Tips on Running SSL Configuration Prepare the Certificate Keystore Edit the Tomcat Configuration File Installing a Certificate from a Certificate Authority Create a loc
如何在Ubuntu 20.04上设置和配置证书颁发机构(CA)
08-15 6283
介绍 (Introduction) A Certificate Authority (CA) is an entity responsible for issuing digital certificates to verify identities on the internet. Although public CAs are a popular choice for verifying t...
iOS 苹果官方Demo汇总
lijuan3203的专栏
10-26 1774
其实, 开发了这么久, 不得不说, 苹果官方的Demo才是对某一个框架或者是某一个功能模块的完美的诠释, 所以, 在今天给大家贡献这些Demo的描述以及Git的下载地址, 大家可以自行阅读Demo, 提高编码水平。 点击左上角的Download Demo GitHub 文章链接地址, 欢迎Star+Fork Mirror of Apple's iOS s
sql clr_SQL Server 2017中CLR严格安全性配置设置的影响
culuo4781的博客
07-20 1611
sql clr Every seasoned SQL Server developer will tell you that no matter how hard you try, there are just operations in SQL Server better implemented elsewhere than relying on native Transact-SQL l...
SSL编程(3).NET实现SSL服务端
weixin_30767835的博客
11-15 196
准备开发用数字证书 一般学习和开发调试场合,不会随便使用正式的SSL服务器证书的私钥。由于服务器验证对于SSL来说是必须的,SSL服务器端必须有拥有一个服务器证书,即能够访问到证书的私钥。对于要求客户端验证的SSL,对客户端有着同样的要求,客户端需要拥有与自己声称的身份对应的数字证书。 Windows SDK中有一个制作测试开发用的临时数字证书的命令行工具:makecert.exe。这一工具也...
服务器异常 证书不可用,SslStream AuthenticateAsServer失败,并显示"服务器证书私钥不可用".单...
weixin_30706851的博客
07-29 418
Basically what I want to do is run the MSDN example about SslStream on Mono.I keep getting the exception: Exception: The authentication or decryption has failed.Inner exception: Server certificate Pri...
用TLS实现安全TCP传输及配置和访问https的web服务
cxzhq2002的杂记
05-29 2917
tls相关大致原理为了让两个之间实现安全传输,(我们把服务端统一叫做TcpServer,客户端统一叫做TcpClient),TcpServer在listen完了accept之后要用一个证书来声明自己是谁,而TcpClient在connect之后要问TcpServer是否具有自己想要的一个证书(确认服务端身份),如果是自己指定的那个证书,就说明是自己要连接的那个TcpServer,这时候连接
how to create a .py file in jupyter notebook
最新发布
04-11
To create a .py file in Jupyter Notebook, you can follow the following steps: 1. Open Jupyter Notebook and create a new Python notebook. 2. In the first cell, type or copy and paste the code you want to save as a .py file. 3. In the next cell, type the following command: `%%writefile myfile.py` 4. Replace `myfile.py` with the name you want to give your .py file. 5. Run the cell. This will create a .py file with the same name in the same directory where your notebook is stored. 6. You can now reuse this .py file in other Python projects by importing it.
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值