Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsFree MagazinesWhite PapersSubmit Content
Discussion GroupsASP.NETWindows FormsLanguages.NET FrameworkVisual Studio.NET
Articles.NET FrameworkASP.NETToolsWindows Forms
.NET DirectoryOpen Source ProjectsUser GroupsWeb Resources
Related Topics
Visual Basic 6SQL ServerMS AccessOther DB ProductsMS Server ProductsMore Topics ...
.NET Forum / ASP.NET / Web Services / February 2006

Tip: Looking for answers? Try searching our database.

WSE 3.0, MutualCertificate11Assertion and EstablishSecurityContext

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Jacques Marcialis - 17 Feb 2006 13:17 GMT
Hi,

I make a simple "Hello World" Web service that works fine :)

I implement to the project (Client and Server) WSE 3.0
MutualCertificate11 capabilities and it works fine too. I test
with/without policy file and in mixed mode (file and code), with client
side and server side x509 certificates ... no problem.

Now I'm trying to implement a SecureContextToken to sign and encrypt
messages after client and server are authenticated (with x509
certificates). To do that, I set the EstablishSecurityContext value to
true on client and server (in policy file or in my code). The two sides
have the same value : true.

When I lauch the client I have an error message :"Security requirements
are not satisfied because the security header is not present in the
incoming message."

On the server side WSE traces, I find : "SecurityContextToken is
expected but not present in the security header of the incoming
message."

Could someone help me ?

Jacques
Reply to this Message
Pablo Cibraro - 20 Feb 2006 13:41 GMT
Hi Jacques,
Are you able to see the SecurityContextToken in the trace file on the client
side ?.

Regards,
Pablo Cibraro
http://weblogs.asp.net/cibrax

> Hi,
>
[quoted text clipped - 22 lines]
>
> Jacques
Reply to this Message
Jacques Marcialis - 21 Feb 2006 08:58 GMT
Hi Pablo,

Thanks for your response.

No, I don't find any SecurityContextToken in the output trace file on
the client side.

I made 2 tries, the first with EstablishSecurityContext=True and the
second with the false value. In two cases. In all case, logs are
quitely the same. Is there any other parameters to set to establish a
security context ?

thx
Jacques
Reply to this Message
Pablo Cibraro - 22 Feb 2006 16:24 GMT
Jacques,

That is really weird.
I think I know the problem, the attribute name is case-sensitive.
Try with "establishSecurityContext" instead of "EstablishSecurityContext".

Regards,
Pablo.

> Hi Pablo,
>
[quoted text clipped - 10 lines]
> thx
> Jacques
Reply to this Message
Jacques Marcialis - 23 Feb 2006 08:39 GMT
Hi Pablo,

Unfortunetly, the problem is not solved.

On the file policy, the value is written 'establishSecurityContext' and
in code, it's written 'EstablishSecurityContext'. I tried all of the
combination of code and file policy on the client and server side, no
way :(

Regards,
Jacques
Reply to this Message

Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.