Java Client Consuming .NET WCF over SSL (WS-Policy not supported)

Question

I have a .NET 4.0 WCF service hosted in IIS on Windows Server 2008 which is running just fine over HTTP. The WCF service is being consumed by a third party, who is using Appian Process Modeler to configure the WCF client (not that it's relevant, but I thought I'd mention it).

EDIT: So the fact they're using Appian Process Modeler may actually be relevant. It's a Java-based client, so that means we're trying to get a Java client to consume a .NET WCF service using WS-Policy over SSL.

EDIT #2: Since I now know that Java is consuming a .NET service, is this a fix I can do on my end to allow Java to consume my service over SSL, or is there a fix my client can put in place to allow their Java code to consume a .NET service using WS-Policy?

After moving from test, to our production environment, when our client updates their service reference to point to the new production URL, they get the following error:

The endpoint BasicHttpBinding_IInterface contains references to a WS-Policy subject, which is not yet supported. That endpoint is not available for selection. (APNX-2-4041-003)

In comparing the two WSDL documents (non-SSL/test, SSL/production) I found the following two differences, both related to WS-Policy (these are the ONLY two differences, except for URLs, in the WSDL document):

<wsp:Policy wsu:Id="BasicHttpBinding_IInterface_policy">
    <wsp:ExactlyOne>
      <wsp:All>
        <sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
          <wsp:Policy>
            <sp:TransportToken>
              <wsp:Policy>
                <sp:HttpsToken RequireClientCertificate="false"/>
              </wsp:Policy>
            </sp:TransportToken>
            <sp:AlgorithmSuite>
              <wsp:Policy>
                <sp:Basic256/>
              </wsp:Policy>
            </sp:AlgorithmSuite>
            <sp:Layout>
              <wsp:Policy>
                <sp:Strict/>
              </wsp:Policy>
            </sp:Layout>
          </wsp:Policy>
        </sp:TransportBinding>
      </wsp:All>
    </wsp:ExactlyOne>
  </wsp:Policy>

And

<wsp:PolicyReference URI="#BasicHttpBinding_IInterface_policy"/>

I attempted to create a static WSDL document in production with those two sections removed, but I can't generate a secure connection to the WCF service if I do that.

So my question is, how do I configure WCF to respond over SSL without the WS-Policy requirements?

Here is the configuration we're using on the server:

<system.serviceModel>
    <bindings>
        <basicHttpBinding>
            <binding name="basicHttps">
                <security mode="Transport">
                    <transport clientCredentialType="None" />
                    <message />
                </security>
            </binding>
        </basicHttpBinding>
    </bindings>
    <client />
    <services>
      <service name="Namespace.API.IInterface_Implementation">
        <endpoint address=""
                  binding="basicHttpBinding"
                  bindingConfiguration="basicHttps"
                  contract="Namespace.API.Interfaces.IInterface"/>
        <endpoint address="mex"
                  binding="mexHttpsBinding"
                  contract="IMetadataExchange"/>

      </service>
    </services>
    <behaviors>
      <serviceBehaviors>
        <behavior>
          <serviceMetadata httpGetEnabled="false" httpsGetEnabled="true" />
          <!-- To receive exception details in faults for debugging purposes, set the value below to true.  Set to false before deployment to avoid disclosing exception information -->
          <serviceDebug includeExceptionDetailInFaults="false"/>
        </behavior>
      </serviceBehaviors>
    </behaviors>
    <serviceHostingEnvironment multipleSiteBindingsEnabled="true" />
  </system.serviceModel>

Answer 1

According to Microsoft, this does not appear to be possible.

See here and here.

The authentication modes and corresponding prefixes and namespaces are discussed in MSDN. This may give you some additional ideas.