Hi all, Forgive me if this question has been asked before ;o) Does anyone know of a way to get a custom UsernameTokenManager (receiving hashed passwords) to work if the password database itself is hashed? My password database is hashed with SHA-1 and the passwords are combined with a salt...more >>

Hello, How can I get similar Certificates, like the ones in the HOL ( Please see list below). But I like to get sample Certificates from a CA, because I was getting some chaining/verification/resolution issues. ( to eliminate WSE405 I had to kill "Verify Trust" ) so I am hoping that Certific...more >>

Hi everyone, Is there a list of things to look for in the OutputTrace.webinfo or the Message Trace and Policy Trace Output and input files. I just need to put my head around this. I need some paper or article that explains what to look for and how to campare the files on the client side a...more >>

Hello, After going through the HOL ( Hands On Lab ) Like Exercise A Task 7 - Implementing a UsernameTokenManager / Works Exercise C - Automating Security with Policies / Works Exercise D - Optimizing Security with Secure Conversation /Works Everything is fine until I add my own UsernameT...more >>

Hi Everyone, Why would I end up with empty copies of these files: OutputTrace.webinfo and InputTrace.webinfo when tracing is enabled? The files are being created, but none of my messages are being traced. was working yesterday but not today and nothing has been changed or modified. Thanks...more >>

I have a Windows Service that needs to communicate with a Windows GUI app on the same machine (and vice-versa). Normally, I would use an Http channel in Remoting to accomplish this. But I wondered if there is a WSE way to accomplish this using the WSE 2.0 Messaging API. Of course the ...more >>

inofficially, yes ;) --- Dominick Baier - DevelopMentor http://www.leastprivilege.com nntp://news.microsoft.com/microsoft.public.dotnet.framework.webservices.enhancements/<73215E51-FF3D-426A-A72B-579061DB9718@microsoft.com> Bonjour, est ce que WSE2 SP2 est compatible avec le...more >>

Bonjour, est ce que WSE2 SP2 est compatible avec le framework 2 (beta) ? Merci Patrick Hi, does the Sp2 is compatible with the Framework 2 ( VS2005) ? thanks in advance Patrick...more >>

i have a C# class which has a string property, and i'm serializing this class into a SOAP message. the string property actually contains another object serialized to XML, and i'm finding that this property in the SOAP body is getting HTML-encoded. i.e. <Array><Item /></Array> is becoming...more >>

All the components have been developed using .NET C#. I have a web service installed on a windows 2003 server machine. I have a client application running from 10 different machines and calling that webservice. On a couple of machine(Windows 2003) when the network is disabled, then when cre...more >>

I have a problem running 2 webservices next to each other. The first web service runs the technology preview version of WSE2.0 The second web service runs the WSE2.0 sp1. Both WebServices authenticate SOAP-calls using a custom UsernameTokenManager Somehow after a while all SOAP-calls that...more >>

Hello, I have a web service that runs on WSE2.0 sp1 with the following relevant settings: - Default ttl in seconds = -1 - Time tolerance in seconds = 43200 I am testing a client with WSE2.0 and I noticed that if I set: - Time tolerance in seconds = 43200 by putting in app.config: <co...more >>

Hi All, Firstly, I used makecert to create certificate, it works, but when I wanted to export it, I got message telling me that the certificate can't be exported, when I go to the makecert help in vs.net I can't find an option for it, I find anther makecert that take that option, but I don't ...more >>

I am trying to create a Web Service to Consume a client app ( I know its backwards). But they use a Pre WS-Security format for X509 digital signatures. So far thier messages will not conform with WSE's policy configurations for this messages configuration. Is there anyone that can enlighten ...more >>

Hello all, I've been having quite a number of issues trying to generate my own certificates. I'm using Makecert v5.131.3617.0 to generate the certificate. Can someone give me a pointer to how I would create a certificate to use to encrypt a Web Service conversation. (It works using the ...more >>

Hello WSE Gods, On one of my machines I am using the sample certificates that came with WSE 2.0 Samples. However when I Install any of the three certificates I get the following errors: "Windows does not have enough information to verify this certificate" "The issuer of this certificate ...more >>

Hello, I am trying to implement a Security Between my Web Site and my Web Service using WSE2.0 using Policy. I Followed the example in HOL-WSE02 and It works greate. Now when I try to use the same exact Procedure/steps on my own web - webservice I keep on getting the following error. W...more >>

Hi, I have a web service installed in server, it woks fine from interanet, but can not access from internet, any idea? Any respones wellcomed. ddt...more >>

I posted this to microsoft.public.dotnet.framework.webservices, but have not gotten answer. I just noticed this group and thought maybe my question/problem belonged here. So, here it is: I'm still stuck here. But I wanted to remove my app from the equation, so here is what I did: 1. Cr...more >>

It seems that WSE currently doesn't support .NET 2.0 & VS 2005. Anybody know will it be in the future? When? Is there any way to use WSE 2 in VS 2005 Beta 1? Thanks. :)...more >>

Hi all, I want to ensure that my wSE 2.0 web service is being called with at least one security token. I have a function that validates that using the RequestContext.Security.Tokens collection. Instead of calling that function from every Soap Method, I want to put this in an HttpModule. ...more >>

What are the options/best practices for authorizing individual Web Service methods that are being made under the protection of WS-SecureConversation? The pattern I have in mind is: 1) The web service client is initially authenticated using a custom username/password (stored in a backend da...more >>

AI am trying to call a third-party web service. this service expects an XML fragment that contains the request plus other parameter. adding the web reference created the syntax below(reference.vb). I changed the data type for the structure that contains the XML data from the default "String" t...more >>

Environment : WSE2, smart client, c# Hi I want to get a global error handler within my webservices. So I have created a soap extension that both client and server use inheriting from WSE2.WebServiceExtension and look for the message.exception in the after deserialize event . On the client ...more >>

I have webservice. The username and password is authenticated through Username token. To manage secure transmit between client and server I want to use SSL. The problem here is Iam creating certficates using Makecert.exe since it is at development stage. 1. Can client and Server certificate...more >>

SP2 changed the key for the _receivers hashtable and the method Receiver has been forgot to update it. The result is that there is no "direct way" to get a registered object by the EndpoindReference from the Receivers. Roman ...more >>

X.509 All in One Hi All, I want to konw everything about X.509 Here is My Questions: 1. How to Pronouncate X.509? 2. What is X.509? 3. How to get X.509 Cert with detailed steps? 4. What is .Cer and PFX? how to get each one of them? 5. When I issue a X.509 does the issuer give me the ...more >>

Hi Guys, Does anybody knows how to encrypt applying WS-Policy with WSE2.0 (SP2) something other than wsp:Body() and wse:UsernameToken() ? Are filters the way to go or there is any other trick to use ? If you don´t know what I mean, just try to encrypt something apart from body and Userna...more >>

I am trying to create a simple "hello world" web service and client that uses X.509 to encrypt the message, all in C# using Visual Studio 2003 and WSE 2.0 SP1. I have tried using both the sample certificate supplied with WSE 2.0 as well as generating my own certificate using makecert. When ...more >>

Hi, I am using the wsewsdl2 tool to create my client-side proxies for accessing web services. The web services are deployed into 4 environments (dev, test, staging, prod). The proxy generated by the wsewsdl2 tool does not provide a mechanism to override the endpoint of where the web servi...more >>

Hello When I add a Web Reference to my Client Project, using a vsdisco file, in the generated reference.vb only for the first class is a xxxWSE proxy class generated. For all other classes the WSE proxy is missing. WSE is enabled for the client and the server project. It's a bug? tha...more >>

i add my 2cents also - this is not quite true - do you know that you need a 20 character - arbitrary - upper/lowercase/digits/punctuation password to get 128 bits of entropy to use..? does your password policy enforce that? in addition - the server must have acess to the clear text pwd t...more >>

Hi, Does anyone get the error above when using WSE2.0 soap client as below when call SendRR(...) to send soap to a web service that is using SoapService in WSE2.0. In debug mode on server (SoapService) I can receive the soap message but when the soap return to client which is method SendRR(...)...more >>

How secure is it to encrypt the body of a message with a Username token? In the HOL it says that it is not very secure. It doesn't say why though. It's obviously not as secure as encrypting with a binary token, but I would like a more in depth reason as to what it makes it not very secure. ...more >>

Hands-On Lab Lab Manual HOLDEVL34: WSE 2.0 Security and Policy Hi all I trid to run the sample [PolicyInvoiceAfter] I installed the sample certificates, but I got the following error --------------------------- Invoice Error --------------------------- Microsoft.Web.Services2.Policy.Polic...more >>

Hi guys, I'm having troubles finding the article "Expanding the Communications Capabilities of Web Services with WS-Addressing" from http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnwse/html/soapmail.asp. It seems that is no longer available from the MSDN site. Does anybody know...more >>

In another thread I have documented my struggle and success at finding a way to programmatically alter the read only property MaxRequestLengthInBytes (Microsoft.Web.Services2.Configuration.WebServicesConfiguration.MessagingConfiguration.MaxRequestLengthInBytes) using reflection to access a pri...more >>

Hello, Please see Subject. Thank you. ...more >>

I have these policy endpoints defined: <endpoint uri="http://localhost/bbb/a1/service.asmx"> ... all endpint definition </endpoint> <endpoint uri="http://localhost/bbb/a2/service.asmx"> ... all endpint definition </endpoint> When I run this under SP1, everything goes fine. With S...more >>

I have played with the Hands-On-Lab HOLDEVL34. It is very good and I learned a lot! In exercise C (Automating Security with Policies), policies are used to get the sample working. The client sends a username token to the server, and the server authenticates the token against the windows ide...more >>

I have played with the Hands-On-Lab HOLDEVL34. It is very good and I learned a lot! One question I have is the following: In example 3 (secure conversation), policies are used to get the sample working. by doing this the server needs a x.509 certificate to get the secure conversation. ...more >>

How do I prevent concurrent access to my web service. How to avoid it. -- Leo...more >>

Dear All, I have done a project and delivered successfully. My customer is reporting that the application is very slow. I have used XMLSerializer extensively in my C# code. Its because of this, the application is too slow. How to make it fast??. Thanks From, -- Sezhman...more >>

Dear All, I have heard about Code Access Security. Can anyone tell me how to go about it. Thanks From, -- Sezhman...more >>

Hello Group, When Signing with a UsernameToken or When Encrypting with a UsernameToken or Securing with X.509 Certificates What type of Algorithm is being used?? SH512, RijndaelManaged,Etc... What algorithm is Encrypting, Decrypting, Hashing etc.. Thanks for all your help Sql ...more >>

SoapEnveloper.SetBodyObject() allows to add only one object instance into the body. Calling it twice with different instance it won't add another instance into body. What if messages have multiple parts ? Myself, for instance, read schema from WSDL, use xsd.exe tool to generate classes file a...more >>

Hi All, I am having a WSE 2.0 webservice that authenticate X509 client and client to send x509 token for authentication. The x509 authentication work fine when it is used from intranet but it fails when the client sends x509 token from internet. i am using trusted x509 certificate The fo...more >>

Environment(W2k, WS2, .Net 1.1,c#) Program(SmatClient, WebServices) Hi I am overriding the AuthenticateToken method to authenticate a user. All the examples of this I have seen check the password against xml, databases etc. I want to authenticate against AD. I have tried the Winapi LogonUser,...more >>

------=_NextPart_0001_D1F452FB Content-Type: text/plain Content-Transfer-Encoding: 7bit We are pleased to announce the availability of WSE2.0 SP2 final release here http://www.microsoft.com/downloads/details.aspx?FamilyId=FC5F06C5-821F-41D3- A4FE-6C7B56423841&displaylang=en And the WSE 2....more >>

This is a multi-part message in MIME format. ------=_NextPart_000_0016_01C4D8BE.58DB4F10 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi Has anyone got any pointers to the following problem Im trying to use = WSE to pass user credentials to a...more >>