How to I use a client certificate to call an outside webservice

Question

0.00/5 (No votes)

See more:

, +

Dear All,

I am developing a web application in .net that needs to serve clientes using their X509 certificates . My webapp needs to call remote webservices from another provider (government servers) that uses the x509 authentication.

I already developed and tested the page using a certficate stored in the local system using the call below:

GovernmentWebservice.ClientCredentials.ClientCertificate.SetCertificate(StoreLocation.LocalMachine, StoreName.My , X509FindType.FindBySubjectName,"MY CERTIFICATION SUBJECT NAME");

But this becomes a problem because I need to use the certificate sent by the client when he connected to my webpage (Request.ClientCertificate.Certificate). I found that the call of the remote webservice only works with certificates stored in my local machine. Anyone knows any workaround so I can use my clients certificate to call the other webservice????

Thanks,

Posted 20-Dec-14 11:13am

Member 11270845

Add a Solution

Comments

Kornfeld Eliyahu Peter 21-Dec-14 3:24am

How you get the client certificate?

Member 11270845 31-Dec-14 8:50am

by configuring the IIS to request the client certificate. then inside my webapp I call

HttpClientCertificate cert = Request.ClientCertificate;

of course it brings the information about the client but the signature doesnt comes with the private key, therefore I cant login to the outside webservice.

Member 11270845 23-Jan-15 13:13pm

Not exactly what I wanted. This procedure doesnt allows me to call an outside webservice with https because the certificate returned is not complete. I found that the only way to achieve what I wanted is to develop a java applet that , once running in the client side, has access to the local registry store. Thanks anyway.

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Member 11270845 · Answer 1 · 2015-01-02T04:01:00

Solution 1

Looks like its not possible.

http://stackoverflow.com/questions/14650008/intercepting-and-forwarding-client-certificate-to-webservice

Would be glad if anyone knows anything in contrary.

Thanks,

Posted 2-Jan-15 4:01am

Member 11270845