X509ClientCertificateAuthentication.CertificateValidationMode Property
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
Gets or sets the certificate validation mode.
public:
property System::ServiceModel::Security::X509CertificateValidationMode CertificateValidationMode { System::ServiceModel::Security::X509CertificateValidationMode get(); void set(System::ServiceModel::Security::X509CertificateValidationMode value); };C#
public System.ServiceModel.Security.X509CertificateValidationMode CertificateValidationMode { get; set; }member this.CertificateValidationMode : System.ServiceModel.Security.X509CertificateValidationMode with get, setPublic Property CertificateValidationMode As X509CertificateValidationModeOne of the X509CertificateValidationMode values.
The following example uses the CertificateValidationMode to print to the screen.
C#
// Create a service host.
Uri httpUri = new Uri("http://localhost/Calculator");
ServiceHost sh = new ServiceHost(typeof(Calculator), httpUri);
// Create a binding that uses a certificate.
WSHttpBinding b = new WSHttpBinding(SecurityMode.Message);
b.Security.Message.ClientCredentialType =
MessageCredentialType.Certificate;
// Get a reference to the authentication object.
X509ClientCertificateAuthentication myAuthProperties =
sh.Credentials.ClientCertificate.Authentication;
switch (myAuthProperties.CertificateValidationMode)
{
case X509CertificateValidationMode.ChainTrust:
Console.WriteLine("ChainTrust");
break;
case X509CertificateValidationMode.Custom:
Console.WriteLine("Custom");
break;
case X509CertificateValidationMode.None:
Console.WriteLine("ChainTrust");
break;
case X509CertificateValidationMode.PeerOrChainTrust:
Console.WriteLine("PeerOrChainTrust");
break;
case X509CertificateValidationMode.PeerTrust:
Console.WriteLine("PeerTrust");
break;
default:
Console.WriteLine("Default");
break;
}
' Create a service host.
Dim httpUri As New Uri("http://localhost/Calculator")
Dim sh As New ServiceHost(GetType(Calculator), httpUri)
' Create a binding that uses a certificate.
Dim b As New WSHttpBinding(SecurityMode.Message)
b.Security.Message.ClientCredentialType = _
MessageCredentialType.Certificate
' Get a reference to the authentication object.
Dim myAuthProperties As X509ClientCertificateAuthentication = _
sh.Credentials.ClientCertificate.Authentication()
Select Case myAuthProperties.CertificateValidationMode
Case X509CertificateValidationMode.ChainTrust
Console.WriteLine("ChainTrust")
Case X509CertificateValidationMode.Custom
Console.WriteLine("Custom")
Case X509CertificateValidationMode.None
Console.WriteLine("ChainTrust")
Case X509CertificateValidationMode.PeerOrChainTrust
Console.WriteLine("PeerOrChainTrust")
Case X509CertificateValidationMode.PeerTrust
Console.WriteLine("PeerTrust")
Case Else
Console.WriteLine("Default")
End Select
The property can also be set in a configuration file.
<serviceCredentials>
<clientCertificate>
<authentication certificateValidationMode='ChainTrust' />
</clientCertificate>
</serviceCredentials>
Allowed values of X509CertificateValidationMode are:
| Product | Versions |
|---|---|
| .NET Framework | 3.0, 3.5, 4.0, 4.5, 4.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1 |
Collaborate with us on GitHub
The source for this content can be found on GitHub, where you can also create and review issues and pull requests. For more information, see our contributor guide.
.NET feedback
.NET is an open source project. Select a link to provide feedback: