堆栈内存溢出
  简体   繁体   English

找不到BizTalk WCF-WebHttp适配器客户端证书

[英]BizTalk WCF-WebHttp adapter Client Certificate not found

 原文  2019-01-29 22:33:39       ssl/ biztalk/ client-certificates/ wcf-web-api/ biztalk-2016

问题描述

When configuring the WCF-WebHttp security tab, I have set Security Mode to Transport , Client Credential type to Certificate . 在配置WCF-WebHttp安全选项卡时,我已将“安全模式”设置为“ Transport ,将“客户端凭据”类型设置为“ Certificate

When I go to browse for Client Cert, it comes up with the only options being Current User/My Store instead of Local Machine/Address Book . 当我浏览客户端证书时,它只有“ Current User/My Store而不是“ Local Machine/Address Book So, to see what happens, I imported my cert into the Current User/My Store . 因此,要查看发生了什么,我将证书导入了Current User/My Store This worked fine and I imported the same cert into the Service Certificate tab. 这工作正常,我将相同的证书导入了“ Service Certificate选项卡。 When a message is processed through the send port, an error like so occurs: 通过发送端口处理消息时,会发生如下错误:

Cannot find the X.509 certificate using the following search criteria: StoreName 'My', StoreLocation 'CurrentUser', FindType 'FindByThumbprint', FindValue 'EF742FBAF0A13A7BEA859DC573308D52F0611CDB'. 无法使用以下搜索条件找到X.509证书:StoreName'My',StoreLocation'CurrentUser',FindType'FindByThumbprint',FindValue'EF742FBAF0A13A7BEA859DC573308D52F0611CDB'。

When it tries to do a GET to the REST service we are trying to consume. 当它尝试对REST服务执行GET时,我们正在尝试使用它。

The configuration I'm using looks like so: 我使用的配置如下所示:

在此处输入图片说明

I'm assuming that since the BizTalk service is not running as myself, it can't find the client cert. 我假设由于BizTalk服务未以我自己的身份运行,因此找不到客户端证书。 I've also imported the cert into the Local Computer/Personal store to see if that helps, to no avail. 我还将该证书导入了Local Computer/Personal存储,以查看是否有帮助,但无济于事。

My question is, how can I get the correct client cert selected through the BizTalk interface? 我的问题是,如何才能通过BizTalk界面选择正确的客户端证书? Is there a way to specify it in the Outbound Message Headers perhaps? 是否有办法在“出站邮件头”中指定它?

1 个解决方案

解决方案1
 1 已采纳  2019-01-29 23:51:44

Certificate Usage Scenarios for the WCF Send Ports WCF发送端口的证书使用方案

Log on to each computer running BizTalk Server that will host the send ports as each host instance service account , and import the client certificate to the Current User \\ Personal (My) store. 登录到每台运行BizTalk Server的计算机,该计算机将作为每个主机实例服务帐户托管发送端口,并将客户端证书导入到“当前用户\\个人(My)”存储中。

You can also do this by just launching the MMC as the BizTalk Service Account user. 您也可以通过以BizTalk服务帐户用户身份启动MMC来执行此操作。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 BizTalk WCF-BasicHttp适配器不允许空字符串用于服务证书道具 - BizTalk WCF-BasicHttp Adapter does not allow Empty string for Service Certificate Props 在BizTalk中禁用WCF自签名证书验证 - Disable WCF self signed certificate validation in BizTalk wcf UserNamePasswordValidator类和客户端证书 - wcf UserNamePasswordValidator class and client certificate WCF客户端证书停止工作 - WCF Client Certificate stopped working 如何在WCF中吊销客户端证书? - How to revoke a client certificate in WCF? WCF SSL客户端证书错误 - WCF SSL Client certificate error WCF异常-未提供客户端证书 - WCF Exception - The client certificate is not provided 如何强制WCF客户端发送客户端证书? - How to force WCF client to send client certificate? Tomcat应用程序到具有客户端证书身份验证的WCF服务 - Tomcat Application to WCF Service with Client Certificate Authentication 一段时间后,带有客户端证书的WCF应用程序失败 - WCF application with client certificate fails after a while?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM