来自带有私钥的商店的 X509Certificate2
[英]X509Certificate2 from store with private key
问题描述
I have a X509Certificate2 with private key NOT exportable from the Windows store with this code:
我有一个带有私钥的X509Certificate2 ,不能使用以下代码从 Windows 商店导出:
X509Certificate2 oCertificato = null;
X509Store my = new X509Store(StoreName.My, StoreLocation.CurrentUser);
my.Open(OpenFlags.ReadOnly);
System.Security.Cryptography.RSACryptoServiceProvider csp = null;
foreach (X509Certificate2 cert in my.Certificates)
{
if (cert.SerialNumber.Trim() == cSerial)
{
csp = (System.Security.Cryptography.RSACryptoServiceProvider)cert.PrivateKey;
oCertificato = cert;
break;
}
}
When I use the certificate with a web service Windows ask the private key.当我将证书与 Web 服务一起使用时,Windows 会询问私钥。 Question: How can I send the private key to certificate?问题:如何将私钥发送到证书?
Regards.问候。
EDIT : This is the function with the connection as the web service:编辑:这是将连接作为 Web 服务的功能:
string cEndPoint = Leo.myendpoint();
ServicePointManager.ServerCertificateValidationCallback = CertificateHandler;
datiOperatore DataOp = Leo.OperatorData();//Operator data request from system (it's ok)
datiApplicativo DataApp = Leo.AppData();//program data request from system (it's ok)
var b = new CustomBinding();
var sec = new AsymmetricSecurityBindingElement(
new X509SecurityTokenParameters(X509KeyIdentifierClauseType.Any, SecurityTokenInclusionMode.Never),
new X509SecurityTokenParameters(X509KeyIdentifierClauseType.Any, SecurityTokenInclusionMode.AlwaysToRecipient));
sec.MessageSecurityVersion = MessageSecurityVersion.WSSecurity10WSTrust13WSSecureConversation13WSSecurityPolicy12BasicSecurityProfile10;
sec.SecurityHeaderLayout = SecurityHeaderLayout.Strict;
sec.IncludeTimestamp = true;
sec.SetKeyDerivation(false);
sec.KeyEntropyMode = System.ServiceModel.Security.SecurityKeyEntropyMode.ServerEntropy;
sec.EnableUnsecuredResponse = true;
b.Elements.Add(sec);
b.Elements.Add(new TextMessageEncodingBindingElement(MessageVersion.Soap11, Encoding.UTF8));
b.Elements.Add(new HttpsTransportBindingElement());
EndpointAddress ea = new EndpointAddress(cEndPoint);
oClient = new CVPClient(b, ea);
X509Certificate2 certSigned = Leo.GetSignedCert();//HERE IS THE REQUEST OF PRIVATE KEY
X509Certificate2 certUnsigned = Leo.GetUnSignedCertificate();
oClient.ClientCredentials.ClientCertificate.Certificate = certSigned;
oClient.ClientCredentials.ServiceCertificate.DefaultCertificate = certUnsigned;
1 个解决方案
解决方案1
1 2016-04-02 14:54:13
I solving the problem:我解决问题:
string cPin = "12345";
System.Security.SecureString SecurePIN = new System.Security.SecureString();
foreach (char ch in cPin)
{ SecurePIN.AppendChar(ch); }
var rsa = (RSACryptoServiceProvider)certSigned.PrivateKey;
string ContinerName = rsa.CspKeyContainerInfo.KeyContainerName;
string CspName = rsa.CspKeyContainerInfo.ProviderName;
int CspType = rsa.CspKeyContainerInfo.ProviderType;
CspParameters csp = new CspParameters(CspType, CspName, ContinerName, new System.Security.AccessControl.CryptoKeySecurity(), SecurePIN);
RSACryptoServiceProvider CSP = new RSACryptoServiceProvider(csp);
I hope it is useful to others我希望它对其他人有用
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.
相关问题
X509Certificate2 的 .pem 私钥 - .pem private key to X509Certificate2
从X509Certificate2删除私钥 - remove private key from X509Certificate2
将X509Certificate2证书与.NET中的私钥相关联 - Associating an X509Certificate2 certificate with a private key in .NET
X509Certificate2 的私钥不可导出? - X509Certificate2 has private key not exportable?
无法读取X509Certificate2上的私钥 - Cannot read private key on X509Certificate2
使用私钥将X509Certificate2导出到字节数组 - Export X509Certificate2 to byte array with the Private key
将私钥添加到 X509Certificate2 - C# - Adding a private key to X509Certificate2 - C#
使用 X509Certificate2 和私钥对文件进行签名 - Sign a file with a X509Certificate2 and private key
X509Certificate2访问私钥到安全令牌 - X509Certificate2 Access to a Private key into a security token
将私钥与.net中的X509Certificate2 class关联 - Associate a private key with the X509Certificate2 class in .net
相关标签