Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Disable certification validation on client side of wcf

Tags:

c#

.net

security

asp.net

wcf

I have 2 apps running inside IIS - Client and Service. Service running just fine, but client isn't.

They talk to each other thru WCF with message security relaying on certificates (it isn't transport security, it's just message security). Both are using self-signed certificates.

But client ends up with error:

System.IdentityModel.Tokens.SecurityTokenValidationException: The X.509 certificate ... is not in the trusted people store. The X.509 certificate ... chain building failed. The certificate that was used has a trust chain that cannot be verified. Replace the certificate or change the certificateValidationMode. A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider

I know how to disable certificate validation on service side and I did it, but how can I disable CA validation on client side?

like image 850
Sebastian Busek Avatar asked Apr 01 '15 11:04

Sebastian Busek

3 Answers

If you are making Request to the server from the client application, call the below lines to avoid certification check before making a service request.

Using this code will bypass SSL validation error due to a self-signed certificate.

System.Net.ServicePointManager.ServerCertificateValidationCallback =
                delegate(object sender, X509Certificate certificate, X509Chain chain, SslPolicyErrors sslPolicyErrors)
                { return true; };

Note: Use this for testing purpose only, for actual application use a valid SSL certificate.

like image 198
sudhAnsu63 Avatar answered Nov 07 '22 21:11

sudhAnsu63

The solution presented by sudhAnsu63 should work for you.

Alternatively, since you are using Message security you could add this to the client configuration file:

<serviceCertificate>
   <authentication certificateValidationMode="None" />
</serviceCertificate>
like image 42
Derek W Avatar answered Nov 07 '22 22:11

Derek W

In code use this:

using System.ServiceModel; // (to ChannelFactory)
using System.IdentityModel;  

ConfigChannel = new ChannelFactory<xxxxxx>(binding, endPoint);
ConfigChannel.Credentials.UserName.UserName = _userName;
ConfigChannel.Credentials.UserName.Password = _password;

ConfigChannel.Credentials.ServiceCertificate.Authentication.CertificateValidationMode = System.ServiceModel.Security.X509CertificateValidationMode.None;
like image 25
Dr Coyo Avatar answered Nov 07 '22 21:11

Dr Coyo
Sign in to Comment

Related questions

Comparing dates in linq
How to tell if it's British Summer Time
How to deal with synchronous method/task using async/await
CSVHelper mandatory fields
AutoIT C# integration [closed]
REST API (ASP.NET Web API 2) best practices: How to return 1 - N items that are not one type but 3 related types?
How can I return a Dictionary<int, object>?
Issues with CORS in ASP.NET
MVC CheckBoxList model binding with non boolean
Need a work around Microsoft.QualityTools.Testing.Fakes
How to invoke a method located inside the Android project from the Portable Class Library Project in Xamarin.Forms?
Retrieving the amount of scaling from the Canvas Scaler (Unity)
NullReferenceException with Owin
Task constructor vs Task.Run with async Action - different behavior
Get next and previous entity of specific Id with Entity Framework?
Easiest method to OrderBy a String using StringComparison.Ordinal
Odd visual behavior from ToolStripMenuItem
How do I convert a Console.Readkey to an int c#
Cannot deserialize the current JSON array (e.g. [1,2,3]). C#, cant figure the error out
How to run async task without need to await for result in current function/thread?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!