We have a web service that is called directly from clients via an IE hosted
Windows control.
We issue our own certificates and use them as part of the authentication
process as well as in WSE2.
The certificates we issue are also stored in the AD associated with each
user and we would like WSE2 in the web service to use the certificates from
the AD. We would rather not have to export the certs from the AD and import
them onto the web server.
So, the question is this:
Can I subclass WSE2 so that when it verifies incoming certificates and
chains (because VerifyTrust is True) using the associated certificate from
the AD instead of looking only in its local machine store? If so, what
method(s) must I override? Must I implement additional interfaces? Any other
things I need to do regarding this?
Thanks in advance!
Windows control.
We issue our own certificates and use them as part of the authentication
process as well as in WSE2.
The certificates we issue are also stored in the AD associated with each
user and we would like WSE2 in the web service to use the certificates from
the AD. We would rather not have to export the certs from the AD and import
them onto the web server.
So, the question is this:
Can I subclass WSE2 so that when it verifies incoming certificates and
chains (because VerifyTrust is True) using the associated certificate from
the AD instead of looking only in its local machine store? If so, what
method(s) must I override? Must I implement additional interfaces? Any other
things I need to do regarding this?
Thanks in advance!