Register

Forgot Password

Site FAQ

Home > IT Answers > Development > Web Services and SSL Certifications

Sk1021

15 pts.

Web Services and SSL Certifications

ASP.NET, Certifications, HTTP, License management, SSL, SSL & TLS, Web services

Hello All, I am working with vendor who offers SOAP based web services that I'm trying to use for my company. The web services app/client that I'm builiding will reside on an IIS box, on our company network. The web services require a cert for mutual SSL and another for TLS. The vendor is requesting that I purchase the two certs for this and send the certs to them for installation. I not familiar with how this all works and would like to better understand before I continue down the path of obtaining certs, configuring, etc. Specifically, I'd like to know if someone can assist in answering the following for me: 1) Are these special certs that I need to purchase? 2) What does the vendor do with the provided certs and what information should I expect to receive from them to ensure a secure handshake? 3) Is the "mutual cert" something that I need to configure (e.g., install on the web server, convert to a file, etc.) I want to make sure I'm heading down the right path by understand all that needs to happen to form a secure connection with the vendor and what is being requested by them. Any insight you can offer up would be greatly appreciated! Thanks, SK

Software/Hardware used:
SOAP Web Services, HTTPS, ASP.NET, Win 03/IIS 6

ASKED: November 30, 2010 6:25 PM

UPDATED: January 6, 2011 12:16 AM

RELATED QUESTIONS

Answer Wiki:

You do need to purchase these certificate from a certificate body there are plenty of companies who will supply them. This normally takes the form of generating Certificate Signing Request using tools like Open SSL or even IIS has a module/Wizard to create the CSRs You then send these to the Company that will create the certs. I would have expected the company doing the hosting to do all the legwork for you and you just providing the details needed Authority to purchase etc. The client certificates you woulds need to install into the Webrowsers on any machines expected to access the Web application.

Last Wiki Answer Submitted: December 9, 2010 12:25 pm by AndyRLee

355 pts.

All Answer Wiki Contributors: AndyRLee

355 pts.

To see all answers submitted to the Answer Wiki: View Answer History.

RSS - Discussions Help

Discuss This Question:

_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

POSTED: Jan 6, 2011 12:16 AM (GMT)

Hi AndyRLee,

Unfortunately, the company won’t offer up any free insight/guidance. I’m trying to avoid additional costs by doing all the legwork myself on this.

Sk1021

15 pts.

Ask a Question

Browse IT Answers by Topic

>>VIEW ALL TAGS

Community Blog | About Us | Contact Us | FAQ | Terms of Use | DMCA Policy

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organization's IT projects - with its network of technology-specific Web sites, events and magazines.
All Rights Reserved, Copyright 1999-2013, TechTarget | Read our Privacy Policy
Questions and Answers Index 1 | Questions and Answers Index 2 | IT Topics Index 1 | IT Topics Index 2 | Blogs Index | Blogs Tags