Hello everyone!
In the last few weeks I built a WCF service that is secured with a self-generated certificate for message-signing and encryption (makecert.exe). The public key had to be installed on all clients (trusted root certificate store). Everything works fine and as we want to go live in the next week, we bought a "real" trusted certificate from TrustCenter ( to do the job.
So, I've imported the private key of the new cert into the LocalMachine certificate store, just as I did with the test-cert. The clients should not need an installed public key, because they all have the root-certificate of trustcenter installed with their windows, which includes this key.
The problem:
On some clients I've tested, everything works as expected. But on some clients, the first two or three service-calls fail, because "the certificate trust chain could not be verified". When I try again some minutes later, it works...!? And from this time, it always works.
Does someone have an idea, what is going on.
Regards,
tobsen
In the last few weeks I built a WCF service that is secured with a self-generated certificate for message-signing and encryption (makecert.exe). The public key had to be installed on all clients (trusted root certificate store). Everything works fine and as we want to go live in the next week, we bought a "real" trusted certificate from TrustCenter ( to do the job.
So, I've imported the private key of the new cert into the LocalMachine certificate store, just as I did with the test-cert. The clients should not need an installed public key, because they all have the root-certificate of trustcenter installed with their windows, which includes this key.
The problem:
On some clients I've tested, everything works as expected. But on some clients, the first two or three service-calls fail, because "the certificate trust chain could not be verified". When I try again some minutes later, it works...!? And from this time, it always works.
Does someone have an idea, what is going on.
Regards,
tobsen
