tags:

views:

14

answers:

1
Q: 

SecurityAccessDenied exception while accessing WCF service in IssuedTokenOverTransport authentication mode

I have a WCF service hosted in my local IIS and I'm trying to access it from my windows application. The binding uses the authentication mode as 'IssuedTokenOverTransport'

I have another service hosted in the same IIS which issues a SAML token. Windows application first calls this service, takes the SAML token issued by this service and uses the same token to call the WCF service.

There is no problem in getting the SAML token. But when WCF service is called with the same SAML token, I get the 'SecurityAccessDenied' exception : 'At least one security token in the message could not be validated.'

Can someone help me t get rid of this issue? I want to access service over HTTPS.

A: 

The problem was with the server certificate. In web.config, the server certificate was configured with the certificateValidationMode="PeerTrust". This was expecting this server certificate in the ‘Trusted People’ store and it was not available there. When I copied it there, the problem got resolved !

Amey  2010-10-26 04:15:37

related questions

Silverlight WCF Authentication (Help going from WPF to Silverlight)
WCF Forms Based Authentication Via Web App - Passing Credentials
WCF Getting "The primary signature must be encrypted." from FaultContract with ProtectionLevel.None
Securing WCF service using basicHttpBinding which supports streaming
How To: WCF with Transport Security+Server Cert Auth. WITHOUT Client Cert?
SSL Error with WCF Service using Transport Security & Cert. Authentication
Connect with WCF to a WebService authenticated with username/password
WCF, Security and Certificates
wsFederationHttpBinding, passing custom user Identity to STS
Security Context of DB connection over Web Service Call
WCF Architecture
How should I configure WCF security for an internal service between two Domains?
Does each authenticated WCF client connection need a CAL?
Custom X509CertificateValidator with BasicHttpSecurityMode.Transport?
Can I setup an IP filter for a WCF Service?
How to use System.IdentityModel in own client-server application
Is it possible to configure Security mode as Transport with "Windows" as clientCredentialtype via https?
How Do I Avoid SSL Certificates during Development for a WCF endpoint that will be secured during Production
Getting caller's hostname in WCF
Custom binding with WCF
"Cannot load the X.509 certificate identity specified in the configuration"
Asp.net not authenticating against wcf service on server 2008
WCF security problem
WCF Security - A list of what I dont understand
Implementing Claims-Based Security (WCF/Asp.NET)