stackoom
  简体   繁体   中英

Disable certification validation on client side of wcf

 原文  2015-04-01 11:39:02       c#/ asp.net/ .net/ wcf/ security

Question

I have 2 apps running inside IIS - Client and Service. Service running just fine, but client isn't.

They talk to each other thru WCF with message security relaying on certificates (it isn't transport security, it's just message security). Both are using self-signed certificates.

But client ends up with error:

System.IdentityModel.Tokens.SecurityTokenValidationException: The X.509 certificate ... is not in the trusted people store. The X.509 certificate ... chain building failed. The certificate that was used has a trust chain that cannot be verified. Replace the certificate or change the certificateValidationMode. A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider

I know how to disable certificate validation on service side and I did it, but how can I disable CA validation on client side?

4 answers

solution1
 11  2015-04-01 12:02:27

If you are making Request to the server from the client application, call the below lines to avoid certification check before making a service request.

Using this code will bypass SSL validation error due to a self-signed certificate. 

System.Net.ServicePointManager.ServerCertificateValidationCallback =
                delegate(object sender, X509Certificate certificate, X509Chain chain, SslPolicyErrors sslPolicyErrors)
                { return true; };

Note: Use this for testing purpose only, for actual application use a valid SSL certificate.

solution2
 2  2015-04-02 02:22:18

The solution presented by sudhAnsu63 should work for you.

Alternatively, since you are using Message security you could add this to the client configuration file: 

<serviceCertificate>
   <authentication certificateValidationMode="None" />
</serviceCertificate>

solution3
 0  2015-12-14 11:30:16

In code use this: 

using System.ServiceModel; // (to ChannelFactory)
using System.IdentityModel;  

ConfigChannel = new ChannelFactory<xxxxxx>(binding, endPoint);
ConfigChannel.Credentials.UserName.UserName = _userName;
ConfigChannel.Credentials.UserName.Password = _password;

ConfigChannel.Credentials.ServiceCertificate.Authentication.CertificateValidationMode = System.ServiceModel.Security.X509CertificateValidationMode.None;

solution4
 -1  2015-04-02 17:09:41

如果您在“受信任的根证书颁发机构”中调整自签名证书,则可以避免证书错误。

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Disable Client Side Validation EditorFor Nginx Client SSL certification validation Generic solution to disable server side validation from client side Passing WCF validation to mvc client side without duplicating Disable numeric validation on client side jquery.validate Disable client side validation in asp.net core at field level Disable client-side validation in MVC 4 submit button Is it possible to disable client side validation for a single model property in MVC wcf events on client side WCF client disable encryption
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM