RE: PKCS Certificates

From: Mike Moore [Microsoft] (michmo@online.microsoft.com)
Date: 02/19/03 

From: michmo@online.microsoft.com ("Mike Moore [Microsoft]")
Date: Tue, 18 Feb 2003 23:36:16 GMT

Hi Hodge,

What is the client? From reading your post, we think your client is an
XMLHttp object. If your client is running in the context of a service, then
it has no user registry hive and cannot access the client certificate.

The following article describes some of the limitations of using
Microsoft.XMLHTTP objects for server to server communication.

PRB: Loading Remote XML or Sending XML HTTP Requests from Server Is Not
Supported
http://support.microsoft.com/?id=237906

Does that answer your question?
The application that is creating the HttpWebRequest, is it a Windows
application?

Thank you, Mike Moore
Microsoft, ASP.NET

This posting is provided "AS IS", with no warranties, and confers no rights.

--------------------
>Content-Class: urn:content-classes:message
>From: "Hodge" <tony@exactconsulting.co.uk>
>Sender: "Hodge" <tony@exactconsulting.co.uk>
>Subject: PKCS Certificates
>Date: Sun, 16 Feb 2003 14:37:31 -0800
>Lines: 14
>Message-ID: <00ec01c2d60b$fdf08d60$a501280a@phx.gbl>
>MIME-Version: 1.0
>Content-Type: text/plain;
> charset="iso-8859-1"
>Content-Transfer-Encoding: 7bit
>X-Newsreader: Microsoft CDO for Windows 2000
>X-MIMEOLE: Produced By Microsoft MimeOLE V5.50.4910.0300
>Thread-Index: AcLWC/3wMhIXjYdLRUyz1insLJEqFA==
>Newsgroups: microsoft.public.dotnet.framework.aspnet.security
>Path: cpmsftngxa06
>Xref: cpmsftngxa06 microsoft.public.dotnet.framework.aspnet.security:3978
>NNTP-Posting-Host: TK2MSFTNGXA13 10.40.1.165
>X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
>
>I'm trying to connect to an HTTPS site in order to post
>an XML stream to it. I have the required client PKCS
>certificate and can connect to the site using IE
>(although it does prompt me to select a certificate to
>use).
>
>Now, I want to code this to automatically send the XML to
>the server, but my problem is that when I try to use the
>HttpWebRequest and add the exported .cer file to the
>ClientCertificates collection, my connection fails.
>
>Can anyone point me in the right direction please?
>
>Hodge.
>

Relevant Pages

  • Re: Need for encryption in WSE 3.0 if using SS-avoid man-in-middle
    ... SSL only validates you are talking to a SSL certified server; ... They can simply edit the URL the client program ... can be done by using a X.509 certificate on both ends, ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: LDP client authentication fails
    ... I got the LDP working with LDAP server under server client authentication ... I did not installed the certificate in pfx format .. ... Client cert auth won't work without that. ...
    (microsoft.public.windows.server.active_directory)
  • Re: SSL & Man In the Middle Attack
    ... >> it possible for the middle man to intercept all messages from server to me ... > server sends client a signed message along with a digital certificate. ... > client generates a random secret key, ...
    (comp.security.misc)
  • Re: activesync issue
    ... On the SBS 2003 Server open the Server Management console. ... On the "Web Server Certificate" page, choose to create a new Web server ... Install the new certificate which created in above step on mobile device: ... Access to browse the Exchange Server 2003 client after you install ...
    (microsoft.public.windows.server.sbs)
  • Re: Need for encryption in WSE 3.0 if using SS-avoid man-in-middle
    ... order to detect we are connected to the wrong server (even though its SSL ... certificate is OK and valid by Verisign); we would need a client certificate. ... this can be detected by SSL/HTTPS client in ...
    (microsoft.public.dotnet.framework.aspnet.security)