In Company where I work, we have an ASP.NET web application that is hosted on IIS server and binded already with CertificateA. This certificate is owned by the company.
There is another Company let say CompanyB that is providing some Rest API service based on paid subscription.
CompanyB provides subscribers with CertificateB and ask them to send CirtificateB along with the http request when invoking the Rest service.
We have subscribed and received a copy of the CertificateB.
We imported CertificateB on the server and uses Restsharp package from NuGet library to achieve the goal.
It works perfectly and get the proper response when I run the application from within Visual Studio.
However, when I publish it on IIS and run the application I am getting error says:
"The request was aborted: Could not create SSL/TLS secure channel."
Provided that both IIS and visual studio installed on the same machine.
As I said the binding of our web application is already using CertificateA.
Is there any configuration on IIS need to be done regarding CertificateB.
Thank u
I wish we get rid of this error
I got the issue resolved. All I have to do is to give the right permission to the application pool identity to be able to access the certificate.
Related
Hi I am trying to deploy a website on an Azure VM and I already set all the configuration for make a deployment but this error appears when I tried to publish:
Error Web deployment task failed. (You connected to the remote computer ("saveci1.westus.cloudapp.azure.com") using the Web Administration Service, but it could not be authorized. Make sure you are using the correct username and password, that the site the one you are connecting to exists and that the credentials represent a user who has permissions to access this site.Get more information at: http://go.microsoft.com/fwlink/?LinkId=221672#ERROR_USER_UNAUTHORIZED.)
Make sure the site name, user name, and password are correct. If the issue is not resolved, please contact your local or server administrator.
Error details:
You connected to the remote computer ("saveci1.westus.cloudapp.azure.com") through the Web Administration Service, but could not be authorized. Make sure you are using the correct username and password, that the site you are connecting to exists, and that the credentials represent a user who has permissions to access this site. Learn more at: http://go.microsoft.com/fwlink/?LinkId=221672#ERROR_USER_UNAUTHORIZED.
Remote server error: (401) Not authorized. PoC 0
I follow all the steps from here https://github.com/aspnet/Tooling/blob/AspNetVMs/docs/create-asp-net-vm-with-webdeploy.md
Could you please check if is there any IP restriction configured for the resource group in Azure portal as it could be the reason.
Also i would suggest you to put a fiddler and trace the request which is causing the failure.
please check if you are behind any proxy, if yest then try to connect to a network that does not require this SSO through the proxy or use one of the many other ways to publish that do not require an SSO connection from your machine such as, FTP, VSTS, Git etc… and try to deploy it. Most of the time proxies are the reason which could cause failure in deployment.
As a workaround you could ftp to the site & do deployment via that method .
Hope it helps.
I am getting an "Access is denied" error on a 2012 R2 server when my web app on that server tries to access a self-hosted WCF service on that server using named pipes.
I do not have this issue on my development machine (Win 7). I can access the WCF service via the client test app on both the server and my development machine.
If I enable ASP.NET Impersonation on the web site using a user account that has full control permissions to the install folder for the WCF service, then the error goes away. I do not want to use impersonation since I understand it has significant performance penalties (not to mention security issues) and the WCF service is called for every user input during a session.
The strange thing is... If I set the app pool to run as either the user with rights to the service folder as described above or as a user with admin privileges, then I still get the error if ASP.NET Impersonation is disabled. The error will go away only after I enable ASP.NET Impersonation on the web site.
I do not have access to the source for the WCF service.
In this case, the web app was located on the D:\ drive and the Anonymous Authentication user (IUSR) did not have RX permissions to the web app location.
Note that if you are using Windows Authentication, then the same issue occurs if the Windows Authenticated user does not have RX permissions to the location of the web app.
The problem was resolved once I gave the authenticated user the proper permission.
Sometimes the solution really is just plain simple...
"Ain't got no gas in it" - Slingblade.
I'm trying to consume a Java Web Service from third party, so i dont have any control over it. I have a pfx file which is password protected, and i installed it in my development box.
This is the code i'm using:
var proxy = new MyServiceReference.WsaaServerBeanService();
var result = proxy.login("test");
I'm getting System.Net.Sockets.SocketError.TimedOut exception when invoking the login web method. The first thing that come to my mind is an authentication issue. Apart from installing the pfx, do i need to send some other info to the web server to authenticate?
System.Net.Sockets.SocketError.TimedOut
Does not indicate an authentication issue, it indicates that you either are not able to contact the remote web service endpoint, or you are and the service is taking too long to respond. Make sure you can actually hit the endpoint from your machine via telnet, a web browser etc...
Authentication failures will usually return immediately.
I developed a BizTalk 2010 application that receives files from a ftp server, elaborates these files and sends them to another ftp server.
About Receive step, authentication is made using ESSO. I created two Affiliate Application, one for each ftp server storing credentials.
In Send step I created a method in a C# class library that is responsible for SSO ticket issuing. So before the send shape, orchestration calls the IssueSSOTicket method that returns an SSO ticket and it attaches it to the message using BTS.SSOTicket context property.
Everything works fine, but sometimes I get the error: A message sent to adapter "FTP" on send port "SendPortName" with URI "ftp://[ipaddress]:[port]/[path]/%SourceFileName%" is suspended. Error details: A failure occurred when retrieving the SSO ticket.
Someone knows if there are some best practices in order to manage this scenario?
Thanks!
Massimo
If you can reproduce the problem locally, then you should be able to debug your custom assembly code that issues the SSO ticket by attaching to the BTSNTSvc process.
Here is a nifty post that describes how to attach Visual Studio's debugger to the BizTalk process and figure out which BizTalk process to attach to (if you have more than one): http://biztalkmessages.vansplunteren.net/2010/01/05/retrieve-the-btsntsvc-exe-pid-with-powershell/
If you can't do that, then how about posting the complete stack trace here?
I am new to BizTalk server and I want to know that is it possible to communicate with bizTalk like a web server? My scenario is like this.
I have a application in silverlight that will send request to biztalk (web service or http) with some parameter, biztalk will send that request to third party web service, third party web service will give response to Biztalk, this response will be sent back to my silverlight application.
Is this possible? if yes can anybody give me an article that help in creating this type of application.
Yes - Use the SOAP adapter and a web service port
Service Station from MS
You will need to create an orchestration and a map (if the schema are different between the 2 services) to handle the actual passing of Messages between the 2 web services.
First Steps in Orchestrations
Creating Maps in BizTalk
and a good guide and tutorial for Webservices here
Calling biztalk webservice from Silverlight
http://weblogs.asp.net/jgalloway/archive/2007/06/14/calling-an-asmx-webservice-from-silverlight-use-a-static-port.aspx
Yes. You can set up an HTTP Receive Port and handle straight XML messages from SilverLight and then pass back whatever message SilverLight requires (be sure to use a 2-Way Receive/Send Port). The bigger question here is why? Why not talk to the far end web service directly from SilverLight? Is BizTalk adding any value here? Are you including BizTalk as an abstractionlayer for future functionality? Is BizTalk some how enriching the messages?
My questions are the same as ChrisLoris.. Why use Biztalk here? If its just to call Service A and then B and deliver information back to the silverlight app, I would rather create acustom .net .dll to handle it. If you really want to have a workflow you can use WorkflowFoundation..
I found the solution for this problem. You need to install the certificate in the user store of the user under which biztalk host instance is running and also grant access to private key of the certificate using winhttpcertcfg tool.
1)Open the mmc using runas /user:<> mmc
and import the certificate into the user store.
2)winhttpcertcfg -g -c LOCAL_MACHINE\My -s <> -a <>
These two steps should do the trick.