Export (0) Print
Expand All

X.509 Certificates

patterns & practices Developer Center

How do I create X.509 certificates?

In a production environment, use an X.509 certificate issued by a certificate authority (CA) such as VeriSign. In a development environment, use the MakeCert utility to create a temporary X.509 certificate.

Ff647712.note(en-us,PandP.10).gifNote:
Do not use temporary development certificates in a production environment as this will expose your communication channel to malicious spoofing, sniffing, and tampering.

Additional Resources

Do I need to create a certificate signed by the root CA certificate?

In a production environment, you can use an X.509 certificate issued by a CA such as VeriSign; this will be created off of the certificate authority's root certificate. In a development environment, you can create a temporary root certificate and then generate another certificate signed by the root for use by the service.

Ff647712.note(en-us,PandP.10).gifNote:
Do not use temporary development certificates in a production environment as this will expose your communication channel to malicious spoofing, sniffing, and tampering.

Additional Resources

How do I use X.509 certificate revocation?

By default, WCF services are configured to check certificate revocation when using certificate authentication. To revoke the certificate used by your service, contact the CA who issued the certificate and ask them to perform a certificate revocation and issue you a new certificate.

Additional Resources


Show:
© 2014 Microsoft