[英]AuthenticateAsServer - The remote certificate is invalid according to the validation procedure
我正在尝试使用以下代码创建测试客户端/服务器连接:
static void Main(string[] args)
{
var listenerThread = new Thread(ListenerThreadEntry);
listenerThread.Start();
Thread.Sleep(TimeSpan.FromSeconds(1));
var socket = new Socket(AddressFamily.InterNetwork, SocketType.Stream, ProtocolType.IP);
socket.Connect("localhost", Port);
var rawStream = new NetworkStream(socket);
var stream = new SslStream(rawStream, false, VerifyServerCertificate);
var certificate = new X509Certificate(CertsPath + @"test.cer");
var certificates = new X509CertificateCollection(new[] { certificate });
stream.AuthenticateAsClient("localhost", certificates, SslProtocols.Tls, false);
Thread.Sleep(TimeSpan.FromSeconds(1));
}
private static bool VerifyServerCertificate(object sender, X509Certificate certificate, X509Chain chain, SslPolicyErrors sslPolicyErrors)
{
return true;
}
static void ListenerThreadEntry()
{
var listener = new TcpListener(IPAddress.Any, Port);
listener.Start();
var client = listener.AcceptTcpClient();
var serverCertificate = new X509Certificate2(CertsPath + @"\test.pfx");
var sslStream = new SslStream(client.GetStream(), false);
sslStream.AuthenticateAsServer(serverCertificate, true, SslProtocols.Tls, false);
Thread.Sleep(TimeSpan.FromSeconds(10));
}
并且在AuthenticateAsServer方法中获取“远程证书根据验证过程无效”错误消息。 使用以下命令创建证书并将其保存到文件:
makecert.exe -r -pe -n "CN=localhost" -a sha1 -sky exchange -sv test.pvk test.cer
pvk2pfx -pvk test.pvk -spc test.cer -pfx test.pfx
我错过了什么?
检查这些步骤,似乎工作,
1)First save the certificate in a file
2)Run MMC
3)Open the Certificate Manager (certmgr.msc in C:\Windows\System32)
4)You will see it opens 'Certificates - Current User'
5)In the menu, choose File, Add/Remove Snap-In
6)Now press Add, select 'Certificates' and select 'Computer Account'
7)Select the Local Computer
8)Now you have two snap-ins:
9)Certificates - Current User
10)Certificates (Local Computer)
11)Now import the certificate in "Certificates (Local Computer)\Trusted Root Certificates\Certificates"
我无法在您的过程中看到您为用于身份验证的证书添加信任。 将false作为参数4传递给AuthenticateAsServer()只会跳过检查吊销,它一般不会跳过对信任的检查。
所以你有以下选择让它工作:
“根据验证程序,远程证书无效” wcf
[英]“The remote certificate is invalid according to the validation procedure” wcf
FluentFTP:根据验证程序远程证书无效
[英]FluentFTP: The remote certificate is invalid according to the validation procedure
SSL证书问题 - 根据验证程序,远程证书无效
[英]SSL Certificate Issue - The remote certificate is invalid according to the validation procedure
根据使用自签名证书的验证程序,远程证书无效
[英]The remote certificate is invalid according to the validation procedure with self-signed certificate
根据SSL Restful Service的验证过程,远程证书无效
[英]The remote certificate is invalid according to the validation procedure from SSL Restful Service
根据使用imap的验证程序,远程证书无效
[英]the remote certificate is invalid according to the validation procedure using imap
TCP客户端C#:根据验证过程,远程证书无效
[英]TCP Client C#: The remote certificate is invalid according to the validation procedure
Microsoft GraphServiceClient 返回“根据验证程序远程证书无效”
[英]Microsoft GraphServiceClient returns "remote certificate is invalid according to the validation procedure"
无法发送电子邮件:(--根据验证步骤,远程证书无效
[英]Cannot send Email :( - The remote certificate is invalid according to the validation procedure
“根据验证程序,远程证书无效”使用 HttpClient
[英]"The remote certificate is invalid according to the validation procedure" using HttpClient
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.