How to avoid the service certificate?

StackOverflow https://stackoverflow.com/questions/18793860

  •  28-06-2022
  •  | 
  •  

Question

"The service certificate is not provided. Specify a service certificate in ServiceCredentials." is what I see when I point my browser to the svc file address

as you can see below, my serviceCredentials section is commented (it's just an example from some book), since I don't want any certificate. But apparently I can't avoid it... what can I do ?

I can't use basicHttpBinding because I want sessions support

my binding:

<wsHttpBinding>
   <binding name="BindingToViewer" sendTimeout="00:25:00">
      <security mode="Message">
         <message clientCredentialType = "None"/>
      </security>
   </binding>
</wsHttpBinding>

my service:

<service name="SomeNs.Whatever.ServName" behaviorConfiguration="NoPrinPermMode">
   <endpoint address="" binding="wsHttpBinding"
                   bindingConfiguration="BindingToViewer"
                   contract="SomeNs.Whatever.IMyInterface">
      <identity>
         <dns value="localhost" />
      </identity>
   </endpoint>
   <host>
      <baseAddresses>
         <add baseAddress="https://localhost/"/>
      </baseAddresses>
   </host>
</service>

my service behaviors:

<serviceBehaviors>
   <behavior name="NoPrinPermMode">
      <serviceMetadata httpGetEnabled="True" httpsGetEnabled="True" />
      <serviceDebug includeExceptionDetailInFaults="true" />
      <dataContractSerializer maxItemsInObjectGraph="2147483646"/>
      <serviceAuthorization principalPermissionMode="None" />
      <!--<serviceCredentials>
         <serviceCertificate
            findValue = "MyServiceCert"
            storeLocation = "LocalMachine"
            storeName = "My"
            x509FindType = "FindBySubjectName"/>
      </serviceCredentials>-->
   </behavior>
</serviceBehaviors>
Was it helpful?

Solution

You have configured message security in WSHttpBinding which implies your service must supply a certificate (unless you use windows auth). The question is what kind of security you need if at all?

OTHER TIPS

Do not use https in base address:

<add baseAddress="https://localhost/"/>

use instead:

<add baseAddress="http://localhost/"/>

and remove httpsGetEnabled:

<serviceMetadata httpGetEnabled="True" httpsGetEnabled="True" />

to:

<serviceMetadata httpGetEnabled="True" />

and remove identity as you do not need to authentificate service

      <identity>
     <dns value="localhost" />
  </identity>

edit remove also 

 <security mode="Message">
    <message clientCredentialType = "None"/>
  </security>
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
scroll top