I tried generating x509 certificates but that's really really tricky. The deployed WebService is only intended to be used privately by our company, so in the future I want to add client certificates. I just want the communication to be encrypted with public keys + user authentication using username + password on the server host (_not_ on domains, or kerberos, etc.). I don't mind having a third party generating our certificates. Where it becomes tricky is when to enable SSL because of the underlying "certificate" overly complicated stuff. So I use the following configuration settings: I wanted to secure this service mainly for a peer-to-peer connection. I created a WebService hosted in a Windows Service (_NOT_ in IIS) with its installer.
0 Comments
Leave a Reply. |