C# consume wsdl with SSL and wssecurity with certificates

Question

0.00/5 (No votes)

See more:

I have to consume wsdl with SSL client certificates and server certificate to validate server answer in C# .NET.
I still got an error Could not create SSL/TLS secure channel

What I have tried:

When I am using wsHttpBinding with

<security mode="Transport">

I get an errot about lack of

ws:security header

. When I choose TransportWithMessageCredential soap enveloped is signed but I got error cannot create secure tls/ssl channel.

While debuging I have noticed that when security mode is transport while handshake there is:

TlsStream#6134445::.ctor(host=XXXXX, #certs=1)

and it is connecting to WS but I am getting error missing ws:security header. But when I change to TransportWithMessageCredential I see in network.log:

TlsStream#29087245::.ctor(host=XXXXX, #certs=0)

and then I got an error about TLS/SSL channel. How can I configure my client to use SSL certificate for transport and sign a messge?

Posted 23-Jan-18 9:34am

ChrisZzZzZz

Updated 25-Jan-18 2:37am

Add a Solution

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

ChrisZzZzZz · Accepted Answer · 2018-01-25T02:37:00

The answer is here:
https://blogs.msdn.microsoft.com/saurabs/2016/03/07/wcf-how-to-send-two-different-client-certificates-as-credentials-at-both-transport-and-message-level/

You have to create custom credentials for transportCertificate and then add it to behavior. There is no standard option to use 3 certificates at the same moment. Provided solution was customized for my project and I am using authenticationMode="MutualCertificate" and in behavior I am using also server certificate. I only customize adding transport certificate, all other things are from base class.