Car*_*ful 5 service certificate azure x509
我有一个与客户端服务器通信的项目,客户端服务器发送一个自签名证书,我应该信任他才能继续连接。
private bool VerifyServerCertificate(LdapConnection ldapConnection, X509Certificate certificate)
{
foreach (var cert in CertificateFileNames)
{
var certPath = Directory.GetFiles($@"{AppDomain.CurrentDomain.BaseDirectory}", $"{cert}",System.IO.SearchOption.AllDirectories);
X509Store store = new X509Store(StoreName.TrustedPeople, StoreLocation.CurrentUser);
try
{
if (File.Exists(certPath.FirstOrDefault()))
{
var certToAdd = new X509Certificate2(X509Certificate.CreateFromCertFile(certPath.FirstOrDefault()));
store.Open(OpenFlags.ReadOnly);
X509Certificate2Collection certs = store.Certificates.Find(X509FindType.FindBySubjectDistinguishedName, certToAdd.SubjectName.Name, true);
if (certs.Count.Equals(0))
{
store.Open(OpenFlags.ReadWrite);
store.Add(new X509Certificate2(X509Certificate.CreateFromCertFile(cert)));
store.Close();
}
}
}
catch
{
throw new Exception("Cannot install the certificate.");
}
}
X509Certificate2 certificate2 = new X509Certificate2(certificate);
return certificate2.Verify();
}
这工作正常,但项目需要部署为 Azure 应用服务。所以我的问题是,应用程序服务环境是否有“受信任的人”存储?
该方法从连接接收 de X509 证书,并根据受信任的人员存储进行验证,因此我需要在验证之前安装证书。
谢谢。
| 归档时间: |
|
| 查看次数: |
352 次 |
| 最近记录: |