WCF Service certificate config for endpoint

B M-A 361 Reputation points
2023-04-06T16:19:34.23+00:00

Hello! I have a wcf service configured, that it is working fine. I observed in wcf configuration at Services->Endpoints->Identity ( using configuration tool) at CertificateReference Properties I observed some properties/values defined, which appear also in web.config. I do not have defined a certificate and I do not use any certificate in my project. Can someone explain what are this properties/values? Best regards, service certificate

.NET
.NET
Microsoft Technologies based on the .NET software framework.
3,459 questions
0 comments No comments
{count} votes

Accepted answer
  1. QiYou-MSFT 4,306 Reputation points Microsoft Vendor
    2023-04-07T05:57:18.7266667+00:00

    Hi @B M-A

    FindValue: Specifies the value to search for in the X.509 certificate store. The type contained in this attribute must satisfy the requirements of the specified X509FindType value. The default is an empty string. isChainIncluded: A Boolean value that specifies if the validation is done using a certificate chain. storeLocation: Specifies the location of the certificate store that the client can use to validate the server’s certificate.
    Valid values include the following:

    • LocalMachine: The cert store assigned to the local machine.
    • CurrentUser: The cert store assigned to the current user.

    The default value is LocalMachine.

    This attribute is of type StoreLocation. storeName: Specifies the name of the X.509 certificate store to open.

    Valid values include the following:

    • AddressBook: Certificate store for other users.
    • AuthRoot: Certificate store for third-party certification authorities (CAs).
    • CertificateAuthority: Certificate store for intermediate CAs.
    • Disallowed: Certificate store for revoked certificates.
    • My: Certificate store for personal certificates.
    • Root: Certificate store for trusted root CAs.
    • TrustedPeople: Certificate store for directly trusted people and resources.
    • TrustedPublisher: Certificate store for directly trusted publishers.

    The default value is My.

    This attribute is of type StoreName. X509FindType: Specifies the type of X.509 search to be executed. The type contained in the findValue attribute must satisfy the requirements of the specified X509FindType.
    Valid values include the following:

    • FindByThumbPrint
    • FindBySubjectName
    • FindBySubjectDistinguishedName
    • FindByIssuerName
    • FindByIssuerDistinguishedName
    • FindBySerialNumber
    • FindByTimeValid
    • FindByTimeNotYetValid
    • FindByTemplateName
    • FindByApplicationPolicy
    • FindByCertificatePolicy
    • FindByExtension
    • FindByKeyUsage
    • FindBySubjectKeyIdentifier

    The default value is FindBySubjectDistinguishedName.
    This attribute is of type X509FindType. You can learn more from document.

    Best Regards

    Qi You


    If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments No comments

0 additional answers

Sort by: Most helpful