Last post Sep 05, 2013 04:59 AM by p.priyank
Sep 04, 2013 01:03 AM|p.priyank|LINK
Hi i have a some wcf service in a silverlight project everything works excellent except one problem. i want to encrypt the message transported over the wire, if i use a sniffer tool like fidler i can see the objects in clear text including the user name
and password. My wcf service uses AspNetSqlMembership, i want to configure my service to use both AspNetSqlMembership and secure message over wire how to achive this, below are some of my wcf configuration sections. Thanks
<endpoint binding="customBinding" bindingConfiguration="CustBind"
<serviceMetadata httpGetEnabled="true" httpsGetEnabled="True" />
<serviceDebug includeExceptionDetailInFaults="true" />
<security authenticationMode="UserNameOverTransport" />
Sep 04, 2013 11:03 PM|Amy Peng - MSFT|LINK
If you want to secure transport Message, please try to use the SSL, then it will encrypt communications. SSL requires a digital certificate, so then you should create and specify a certificate to use.
For more information, please try to refer to these following articles:
#Securing WCF Services: Using ASP.NET Membership & Role Providers:
#WCF Security - Implementation:
Sep 05, 2013 04:59 AM|p.priyank|LINK
Thanks for the reply the article link u shared was of great help. I configured my iis to use ssl, which is self created using iis tool and wcf to use basicHTTPbinding with Transport mode security everyting works fine but still same problem if i use filder
i can see the soap messages inclusind the username and password. is there anything i m missing or else self signed cert dont work. Thanks