David Kiff
David Kiff

Reputation: 1210

WCF Client Certificate Authentication

We have a typical client-server WCF service and I would like the following:

The client has a clientAuthentication certificate installed, along with our trusted CA. The server has our trusted CA certificate installed. I dont want to install any other certificates.

I am flexible on the binding, however it does need to work in a web scenerio.

I thought about using BasicHttpBinding with TransportCredentialOnly, however it doesnt support certificates :(.

Ive tried using wsHttpBinding in Message mode, however that requires a ServerCertificate to perform server authentication and message encryption... which I dont want!

Is there any built-in way to achieve this?

Upvotes: 2

Views: 2004

Answers (1)

Ladislav Mrnka
Ladislav Mrnka

Reputation: 364409

All build in bindings allow using client certificates only when server certificate is used - mutal certificate authentication and security. To support your scenario you will have to handle it completely yourselves. If you want to inject your authentication mechanism to WCF you will have to do custom token and custom credentials.

Upvotes: 2

Related Questions