<certificate> Element
Specifies an X.509 certificate to use for signing and encrypting messages for peer-to-peer clients.
Schema Hierarchy
<system.serviceModel>
<behaviors>
<endpointBehaviors>
<behavior> of <endpointBehaviors>
<clientCredentials>
<peer> of <clientCredentials> Element
<certificate> Element
Syntax
<certificate findValue="String"
storeLocation="LocalMachine/CurrentUser"
storeName="AddressBook/AuthRoot/CertificateAuthority/Disallowed/My/Root/TrustedPeople/TrustedPublisher"
X509FindType="FindByThumbPrint/FindBySubjectName/FindBySubjectDistinguishedName/FindByIssuerName/FindByIssuerDistinguishedName/FindBySerialNumber/FindByTimeValid/FindByTimeNotYetValid/FindByTemplateName/FindByApplicationPolicy/FindByCertificatePolicy/FindByExtension/FindByKeyUsage/FindBySubjectKeyIdentifier"
/>
Attributes and Elements
The following sections describe attributes, child elements, and parent elements.
Attributes
Attribute | Description |
---|---|
findValue |
A string that contains the value to search for in the X.509 certificate store. The type contained in the attribute must satisfy the requirements of the specified x509FindType. The default is an empty string. |
storeLocation |
Specifies the location of the X.509 certificate store that the client uses to validate the peer's certificate against. Valid values include the following:
The default is LocalMachine. |
storeName |
Specifies the name of the X.509 certificate store to open. Valid values include the following:
The default is My. |
X509FindType |
Defines the type of X.509 search to be executed. Valid values include the following:
The type contained in the findValue attribute must satisfy the requirements of the specified X509FindType. The default value is FindBySubjectDistinguishedName. |
Child Elements
None.
Parent Elements
Element | Description |
---|---|
Specifies credentials used when authenticating peer-to-peer clients. |
Remarks
This configuration element contains a X509Certificate2 instance used when authenticating neighbors in the peer mesh.
For more information about peer-to-peer programming, see Peer to Peer Networking.
Example
The following code specifies how to find the certificate used in a peer-to-peer scenario.
<behaviors>
<endpointBehaviors>
<behavior name="MyEndpointBehavior">
<clientCredentials>
<peer>
<certificate findValue="www.contoso.com"
storeLocation="LocalMachine"
x509FindType="FindByIssuerName" />
</peer>
</clientCredentials>
</behavior>
</endpointBehaviors>
See Also
Reference
PeerCredentialElement
Certificate
X509PeerCertificateElement
Certificate
Other Resources
Working with Certificates
Peer to Peer Networking
Peer Channel Message Authentication
Peer Channel Custom Authentication
Best Practices for Securing PeerChannel Applications