Udostępnij za pośrednictwem


Configuring Security

Use the Security tab of the AppFabric configuration dialog box to configure security by using certificates. You can select an X.509 certificate by querying or browsing an X.509 certificate store. Some endpoints of a .NET Framework 4 service are secure and maintain their security by using security certificates. Use the Security tab to set a certificate to be used by a service if any of its (secure) endpoints require a certificate for signing. Secure endpoints can also use a security certificate to authenticate the service to WCF clients by using Message security. This validates to the client that the server is indeed the server the client is trying to connect to and run one of its .NET Framework 4 services.

You can configure a certificate for a .NET Framework 4 service managed by AppFabric in two ways. You can do it through AppFabric in IIS Manager. Or you can use AppFabric cmdlets that are specifically written to manage .NET Framework 4 service certificates. Changes made in the cmdlets or AppFabric UI affect the <serviceCertificate> element in the appropriate configuration file.

<system.serviceModel>
  <services>
    <service name="s1" behaviorConfiguration="s1Behavior"/>
  </services>
  <behaviors>
    <serviceBehaviors>
      <behavior name="s1Behavior">
        <serviceCredentials>
          <serviceCertificate findValue="Contoso.com"
                              x509FindType="FindBySubjectName" />
        </serviceCredentials>
      </behavior>
    </serviceBehaviors>
  </behaviors>
</system.serviceModel>

Note

Merely setting the certificate is not enough to achieve secure communication for a service. Additionally, the service must expose an endpoint using secure certificates.

For more information about configuring service certificates for .NET Framework 4 service endpoints, see <serviceCertificate> of serviceCredentials> (https://go.microsoft.com/fwlink/?LinkId=167979).

In This Section