X509ClientCertificateAuthentication.TrustedStoreLocation 屬性
定義
重要
部分資訊涉及發行前產品,在發行之前可能會有大幅修改。 Microsoft 對此處提供的資訊,不做任何明確或隱含的瑕疵擔保。
取得或設定要在其內容中驗證用戶端憑證鏈結的受信任存放區位置。
public:
property System::Security::Cryptography::X509Certificates::StoreLocation TrustedStoreLocation { System::Security::Cryptography::X509Certificates::StoreLocation get(); void set(System::Security::Cryptography::X509Certificates::StoreLocation value); };public System.Security.Cryptography.X509Certificates.StoreLocation TrustedStoreLocation { get; set; }member this.TrustedStoreLocation : System.Security.Cryptography.X509Certificates.StoreLocation with get, setPublic Property TrustedStoreLocation As StoreLocation屬性值
要在其內容中驗證用戶端憑證鏈結的受信任存放區位置。
例外狀況
設定 (set) 認證何時為唯讀。
範例
// Create a service host.
Uri httpUri = new Uri("http://localhost/Calculator");
ServiceHost sh = new ServiceHost(typeof(Calculator), httpUri);
// Create a binding that uses a certificate.
WSHttpBinding b = new WSHttpBinding(SecurityMode.Message);
b.Security.Message.ClientCredentialType =
MessageCredentialType.Certificate;
// Get a reference to the authentication object.
X509ClientCertificateAuthentication myAuthProperties =
sh.Credentials.ClientCertificate.Authentication;
// Configure peer trust.
myAuthProperties.CertificateValidationMode =
X509CertificateValidationMode.PeerTrust;
myAuthProperties.TrustedStoreLocation =
StoreLocation.LocalMachine;
' Create a service host.
Dim httpUri As New Uri("http://localhost/Calculator")
Dim sh As New ServiceHost(GetType(Calculator), httpUri)
' Create a binding that uses a certificate.
Dim b As New WSHttpBinding(SecurityMode.Message)
b.Security.Message.ClientCredentialType = _
MessageCredentialType.Certificate
' Get a reference to the authentication object.
Dim myAuthProperties As X509ClientCertificateAuthentication = _
sh.Credentials.ClientCertificate.Authentication
' Configure peer trust.
myAuthProperties.CertificateValidationMode = _
X509CertificateValidationMode.PeerTrust
myAuthProperties.TrustedStoreLocation = StoreLocation.LocalMachine
這個屬性也可以在組態檔中設定。
<serviceCredentials>
<clientCertificate>
<authentication certificateValidationMode='ChainTrust' trustedStoreLocation = 'LocalMachine'/>
</clientCertificate>
</serviceCredentials>
備註
這個屬性會指定是否要使用電腦或使用者內容來驗證 X.509 憑證鏈結。
