When we use X.509 certificates with web services we might get this exception:
This mostly means the certificate that was used by the server/client for encryption/signature is not valid on our machine. One solution would be to add it or its issuer cert to our trusted store.
An interesting case where we may get this error is after we have added the certificate to the store. This is usually a result of caching made by the windows store. Such caching is used in order to prevent DOS attacks. Wait a few minutes until changes take effect...
Thanks a lot..
ReplyDeletethis helped me a lot
In Visual Studio this seems to be WSE537 error. Adding the certificate to local store doesn't help. The issuer is already added but this don't work. Any ideas?
ReplyDeleteIn Visual Studio this seems to be WSE537 error. Adding the certificate to local store doesn't help. The issuer is already added but this don't work. Any ideas?
ReplyDeleteHi Piotr
ReplyDeleteWhen things get messed up with certificates authentication I like to install the relevant certificates in each one of the stores (in local machine or current user) and see what happens... if this works I remove them one by one.
Of course it can still be the issue is something else. If you have a working client compare the outgoing message to its message.
The interesting thing here is that the web service receive and process the message, the problem is only on the client side. This tells that problem is only on client machine, right?
ReplyDeleteSuccess! I've added the CA to local computer store and that did the trick! :)
ReplyDeleteHi,
ReplyDeleteWorks for me, thanks