<serviceCertificate> of <serviceCredentials>

  • Article

Defines an X.509 certificate initiated by a client.

<system.serviceModel>

  <behaviors>

    <serviceBehaviors>

      <behavior> of <serviceBehaviors>

        <serviceCredentials> Element

          <serviceCertificate> of <serviceCredentials>

                                    
                                    <serviceCertificate findValue="String" 
                                
                                    
                                        storeLocation="LocalMachine/CurrentUser"
                                
                                    
                                        storeName="AddressBook/AuthRoot/CertificateAuthority/Disallowed/My/Root/TrustedPeople/TrustedPublisher"
                                
                                    
                                    X509FindType="FindByThumbPrint/FindBySubjectName/FindBySubjectDistinguishedName/FindByIssuerName/FindByIssuerDistinguishedName/FindBySerialNumber/FindByTimeValid/FindByTimeNotYetValid/FindByTemplateName/FindByApplicationPolicy/FindByCertificatePolicy/FindByExtension/FindByKeyUsage/FindBySubjectKeyIdentifier"
                                
                                    
                                    />

Attributes and Elements

The following sections describe attributes, child elements, and parent elements.

Attributes

Attribute Description

findValue

A string that contains the value to search for in the X.509 certificate store. The type contained in the attribute must satisfy the requirements of the specified X509FindType. The default is an empty string.

storeLocation

Specifies the location of the X.509 certificate store that the client uses to validate the server’s certificate against. Valid values include the following:

  • LocalMachine: the certificate store assigned to the local machine.

  • CurrentUser: the certificate store assigned to the current user.

The default is LocalMachine.

storeName

Specifies the name of the X.509 certificate store to open. Valid values include the following:

  • AddressBook: Certificate store for other users.

  • AuthRoot: Certificate store for third-party certificate authorities (CAs).

  • CertificateAuthority: Certificate store for intermediate certificate authorities (CAs).

  • Disallowed: Certificate store for revoked certificates.

  • My: Certificate store for personal certificates.

  • Root: Certificate store for trusted root certificate authorities (CAs).

  • TrustedPeople: Certificate store for directly trusted people and resources.

  • TrustedPublisher: Certificate store for directly trusted publishers.

The default is My.

X509FindType

Defines the type of X.509 search to be executed. Valid values include the following:

  • FindByThumbPrint

  • FindBySubjectName

  • FindBySubjectDistinguishedName

  • FindByIssuerName

  • FindByIssuerDistinguishedName

  • FindBySerialNumber

  • FindByTimeValid

  • FindByTimeNotYetValid

  • FindByTemplateName

  • FindByApplicationPolicy

  • FindByCertificatePolicy

  • FindByExtension

  • FindByKeyUsage

  • FindBySubjectKeyIdentifier

The type contained in the findValue attribute must satisfy the requirements of the specified X509FindType.

The default value is FindBySubjectDistinguishedName.

Child Elements

None

Parent Elements

Element Description

<serviceCredentials> Element

Specifies the credential to be used in authenticating the service, and the client credential validation related settings.

See Also

Reference

X509RecipientCertificateServiceElement

Footer image

Send comments about this topic to Microsoft.
© Microsoft Corporation. All rights reserved.