C
calderara
Dear all,
i do not know if it is the right place to post this but I try .
I am using an ammplication with WCF service and I need to configured
certificate for authentication and associate them to an SSL port.
For that I do the following using makecert tool:
===============================
1- Create a self sign root authority certificate and export the private key
makecert -n "CN=myLocalCA" -r -sv myLocalCA.pvk myLocalCA.cer -sky exchange
2 - add it too root
============
certmgr -add myLocalCA.pvk -s -r localmachine root
3- Create a certificate signed with previous authority
==================================
makecert -sky exchange -iv DemoWcfCA.pfx -n "CN=DemoWcfCA" -ic
DemoWcfCA.cer DemoWcf.cer -sr localmachine -ss My
So far so good. then I follow the procedure to attache this certificate to
my service SSL port as follow:
netsh http add sslcert ipport=0.0.0.0:8000
certhash=37e022ecfb37b05a2735a2894537f5b650ad3ecc
appid={F09BD073-946E-45cf-A8F5-F2B220799405}
it install successfully but when accessing my service at the adress
https://:8000/myservice I get an error saying :
"impossible to build a trust relashionship for the secure chanel SSL/TLS
with the authority "
I am getting mad, I guess that the certificate as not been properly attached
to the machine name. How to resloved this error ?
Thanks for your help
regards
serg
i do not know if it is the right place to post this but I try .
I am using an ammplication with WCF service and I need to configured
certificate for authentication and associate them to an SSL port.
For that I do the following using makecert tool:
===============================
1- Create a self sign root authority certificate and export the private key
makecert -n "CN=myLocalCA" -r -sv myLocalCA.pvk myLocalCA.cer -sky exchange
2 - add it too root
============
certmgr -add myLocalCA.pvk -s -r localmachine root
3- Create a certificate signed with previous authority
==================================
makecert -sky exchange -iv DemoWcfCA.pfx -n "CN=DemoWcfCA" -ic
DemoWcfCA.cer DemoWcf.cer -sr localmachine -ss My
So far so good. then I follow the procedure to attache this certificate to
my service SSL port as follow:
netsh http add sslcert ipport=0.0.0.0:8000
certhash=37e022ecfb37b05a2735a2894537f5b650ad3ecc
appid={F09BD073-946E-45cf-A8F5-F2B220799405}
it install successfully but when accessing my service at the adress
https://:8000/myservice I get an error saying :
"impossible to build a trust relashionship for the secure chanel SSL/TLS
with the authority "
I am getting mad, I guess that the certificate as not been properly attached
to the machine name. How to resloved this error ?
Thanks for your help
regards
serg