How to: Obtain a certificate (WCF)

To use any of the Windows Communication Foundation (WCF) features that use X.509 certificates, you must first obtain certificates.

Obtain an X.509 certificate

Choose one of the following:

  • Purchase a certificate from a certification authority, such as VeriSign, Inc.

  • Set up your own certificate service and have a certification authority sign the certificates. In Windows Server, use the Active Directory Certificate Services role to manage a certification authority.

  • Set up your own certificate service and do not have the certificates signed.

Note

Whichever approach you take, the recipient of the SOAP request that contains the X.509 certificate must trust the X.509 certificate. This means that the X.509 certificate or an issuer in the certificate chain is in the Trusted People certificate store, and that the X.509 certificate is not in the Untrusted Certificates store.

See also