Add SSL Certificate During WCF HTTPS Development Testing

最新推荐文章于 2023-05-10 16:27:24 发布

riverlau

最新推荐文章于 2023-05-10 16:27:24 发布

阅读量688

点赞数

分类专栏： WCF WCF Issue&Resolution 文章标签： testing wcf ssl microsoft command application

本文链接：https://blog.csdn.net/riverlau/article/details/7544269

版权

WCF 同时被 2 个专栏收录

55 篇文章 0 订阅

订阅专栏

WCF Issue&Resolution

3 篇文章 0 订阅

订阅专栏

IIS: Add a certificate (name as "localhost-cert") :

cmd>makecert -sr LocalMachine -ss My -n CN=localhost -sky exchange
This command creates a certificate with the subject “localhost” and places it in the Personal store of the local computer.The subject name for a service certificate should match the name of host computer in the URL that the client application uses to connect to the service

After Add the certificate, certificate will appear at IIS Server Certificates and Personal store of the local computer

How to open LocalMachine Certificates Management Console

Once this command has been run and succeeded, you need to make this certificate a trusted authority. You do this by using the MMC snap in console. Go to the run window and type "mmc", hit enter. Then in the window that opens (called the "Microsoft Management Console, for those who care) perform the following actions.
File -> Add/Remove Snap-in -> Add… -> Double click Certificates -> Select Computer Account and Click Next -> Finish -> Close -> OK
Then select the Certificates (Local Computer) -> Personal -> Certificates node.

http://msdn.microsoft.com/en-us/library/ms733791.aspx

Bind sthe certificate with the thumbprint to the port

cmd>netsh http add sslcert ipport=0.0.0.0:1234 certhash=22e12b61467135349fa061446a89c30369e95fcb appid={00112233-4455-6677-8899-AABBCCDDEEFF}

The certhash parameter specifies the thumbprint of the certificate.
The ipport parameter specifies the IP address and port, and functions just like the -i switch of the Httpcfg.exe tool described.
The appid parameter is a GUID that can be used to identify the owning application.

Add code to client to skip certificate verification entirely

ServicePointManager.ServerCertificateValidationCallback = new RemoteCertificateValidationCallback(
    delegate
    {
        return true;
    });

ServicePointManager.ServerCertificateValidationCallback += customXertificateValidation;

 private static bool customXertificateValidation(object sender, X509Certificate cert,
            X509Chain chain, SslPolicyErrors error)
        {
            X509Certificate2 certificate = (X509Certificate2)cert;
            if (certificate.Subject == "CN=127.0.0.1" && !String.IsNullOrEmpty(certificate.Thumbprint) &&
                certificate.Thumbprint.ToLower() == "cfdf5d1140b94614d047dd77c7bd4d4d4422e1c9")
            {
                return true;
            }
            return false;
        }

riverlau

关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
Add SSL Certificate During WCF HTTPS Development Testing

IIS: Add a certificate (name as "localhost-cert") :cmd>makecert -sr LocalMachine -ss My -n CN=localhost -sky exchangeThis command creates a certificate with the subject “localhost” and places it
复制链接

扫一扫