Hello, I am writing a WCF service that will be called by multiple clients. Each of these clients will have their own SSL certificate to authenicate who they are. I am pretty sure this can be done through custom binding but am having a hard time getting
started with this. Can someone please provide some pointers or even key words to search for? I am new to custom binding and wcf security so I am not sure what I am looking for.
How can I set it up where each client that connects to my services has its own unique ssl certificate? When the request comes in, I need to be able to verify each one and make sure it has the correct credentials?
mbevins1
Member
19 Points
27 Posts
Custom Binding with multiple SSL Certificates
May 18, 2012 03:53 PM|LINK
Hello, I am writing a WCF service that will be called by multiple clients. Each of these clients will have their own SSL certificate to authenicate who they are. I am pretty sure this can be done through custom binding but am having a hard time getting started with this. Can someone please provide some pointers or even key words to search for? I am new to custom binding and wcf security so I am not sure what I am looking for.
Thanks in advance.
BrockAllen
All-Star
27554 Points
4912 Posts
MVP
Re: Custom Binding with multiple SSL Certificates
May 18, 2012 08:18 PM|LINK
You don't need a custom binding:
<ws2007HttpBinding>
<binding>
<security mode="TransportWithMessageCredential">
<message clientCredentialType="Certificate"/>
</security>
</binding>
</ws2007HttpBinding>
DevelopMentor | http://www.develop.com
thinktecture | http://www.thinktecture.com/
mbevins1
Member
19 Points
27 Posts
Re: Custom Binding with multiple SSL Certificates
May 21, 2012 10:46 AM|LINK
How can I set it up where each client that connects to my services has its own unique ssl certificate? When the request comes in, I need to be able to verify each one and make sure it has the correct credentials?
BrockAllen
All-Star
27554 Points
4912 Posts
MVP
Re: Custom Binding with multiple SSL Certificates
May 22, 2012 01:49 AM|LINK
http://leastprivilege.com/2007/08/25/certificate-based-authentication-and-wcf/
http://leastprivilege.com/2007/08/26/certificate-based-authentication-and-wcf-mode-independent/
http://leastprivilege.com/2007/08/25/certificate-based-authentication-and-wcf-message-security/
DevelopMentor | http://www.develop.com
thinktecture | http://www.thinktecture.com/