WCF Service Unable to Access Personal Certificate Store Unless Service Account is Logged In

views:

answers:

+3 Q:

WCF Service Unable to Access Personal Certificate Store Unless Service Account is Logged In

I created a WCF service that has a method which makes a call to a SOAP web service over the internet.

In order to make a call to the SOAP web service, it requires that an X.509 certificate be sent with the HttpWebRequest.

The X.509 certificates are loaded in the Personal and Trusted Certificate store of the account which the service is running under.

When the service account is logged into the server, everything works just fine.

However, when the service account is not physically logged onto the server, it has problems loading up the X.509 certificate and fails authentication when trying to make the HttpWebRequest.

I am new to WCF services so I don't even know where to start looking.

Can anyone help? Thanks.

+2 A:

You need to install client certificate to the local machine store and access it from there, since your account is not interactive from your application standpoint. Also you have grant access to the client certificate for the user account that is used to run your WCF service.

Viktor Jevdokimov 2010-09-02 11:48:21

@Viktor - Thanks for your response. The certificates are already installed for the service account and permissions granted. Looks like I just had to set LoadUserProfile to true in the app pool settings.

thiag0 2010-09-02 13:20:59

+2 A:

The problem was that the app pool doesn't load the user profile of the service account by default.

You have to go to the advanced settings for the app pool and set LoadUserProfile to true.

thiag0 2010-09-02 13:19:51

ansaurus

tags:

views:

answers:

WCF Service Unable to Access Personal Certificate Store Unless Service Account is Logged In

related questions