LA.NET [EN]

Jan 19

Since I”ve just lost a couple of hours trying to configure my WCF service to use SSL, I”ve though I”d put the steps here for self-reference.

The first thing you need to do is to create a test certificate. Since I”m running Vista+IIS 7 (workstation), I”ve used makecert with something like this:

makecert -sr LocalMachine -ss My -a sha1 -n “CN=url-you”re-using” -sky exchange -pe

Basically, the previous command creates a new certificate and puts it in the Personal folder of the local machine store. It also configures the private key so that it needs to be exported.

After doing this, it will be necessary to export the certificate and all the certificates in the certification path – normally, one: Root Agency. Then you”ll have to install them in the clients that want to use the client (normally, the root agency certificate will be installed in the trusted publishers and the test certificate should be put in the trusted people store of the local machine).

After performing these steps, you might still need to give access permissions to the private key  to the service running the process that hosts the WCF service (WCF sampls have a tool called FindPrivateKey that helps you in finding the file that has the private key of the service).

3 comments so far

  1. Seba
    4:13 pm - 10-17-2007

    Could you post your config files to use them as an example?

  2. Vinh
    3:24 pm - 5-2-2008

    Great!, can you document details step by step please. Thank you.

Leave a Reply

Your email address will not be published. Required fields are marked *


*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>