使用TLS 1.2连接
[英]Connecting using TLS 1.2
问题描述
I have a .NET console app with talk to a WCF service. 
我有一个与WCF服务对话的.NET控制台应用程序。 The WCF service then makes a webservice call to an external provider. 然后,WCF服务对外部提供程序进行Web服务调用。 The external provider is about to turn off support for anything below TLS 1.2 外部提供商即将关闭对TLS 1.2以下版本的支持
Both of my applications are using .NET framework 4.6 which I believe will automatically negotiate the highest security protocol 我的两个应用程序都使用.NET Framework 4.6,我相信它将自动协商最高安全性协议
The external provider says I am still communicating in TLS 1.0 外部提供商说我仍在使用TLS 1.0进行通信
I have installed fiddler onto one of our app servers to try and see what is happening, here is a screen shot 我已将提琴手安装到我们的其中一台应用服务器上,以尝试查看发生了什么,这是一个屏幕截图
I'm new to fiddler, is that saying that my client app is attempting to connect in TLS 1.2 but the server responded with TLS 1.0? 我是小提琴手的新手,是说我的客户端应用尝试在TLS 1.2中进行连接,但服务器以TLS 1.0进行了响应吗?
1 个解决方案
解决方案1
0 2018-03-21 03:42:15
I would not recommend using Fiddler to debug TLS version negotiation because Fiddler is a Man-in-the-Middle (MITM) proxy. 我不建议使用Fiddler来调试TLS版本协商,因为Fiddler是中间人(MITM)代理。 Ie, your app is connecting to Fiddler and not the service you're attempting to debug. 也就是说,您的应用程序正在连接到Fiddler,而不是您要调试的服务。
A better solution is to use a tool such as Wireshark or Microsoft Network Monitor (aka Netmon) to inspect the TLS packets and view the SSL/TLS handshake . 更好的解决方案是使用Wireshark或Microsoft Network Monitor (又名Netmon)之类的工具来检查TLS数据包并查看SSL / TLS握手 。
This article covers using Netmon to determine if your app is attempting to use TLS 1.2 and also covers configuring Windows to use TLS 1.2. 本文介绍如何使用Netmon来确定您的应用是否尝试使用TLS 1.2,还介绍了如何配置Windows以使用TLS 1.2。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.