Partilhar via


<transport> of <netMsmqBinding>

Defines the transport security settings.

Schema Hierarchy

<system.serviceModel>
  <bindings>
    <netMsmqBinding>
      <binding>
        <security> of <netMsmqBinding>
          <transport> of <netMsmqBinding>

Syntax

<netMsmqBinding>
    <binding>
    <security>
         <transport msmqAuthenticationMode="None/WindowsDomain/Certificate"
            msmqEncryptionAlgorithm="RC4Stream/AES"
            msmqProtectionLevel="None/Sign/EncryptAndSign"
            msmqSecureHashAlgorithm="MD5/SHA1/SHA256/SHA512" />
    </security>
   </binding>
</netMsmqBinding>

Attributes and Elements

The following sections describe attributes, child elements, and parent elements.

Attributes

Attribute Description

msmqAuthenticationMode

Specifies how the message must be authenticated by the MSMQ transport. Valid values include the following:

  • None: No authentication.

  • WindowsDomain: The authentication mechanism uses Active Directory to retrieve the X.509 certificate for the security identifier associated with the message. This is then used to check the ACL of the queue to ensure the user has write permission for the queue.

  • Certificate: The channel retrieves the certificate from the certificate store.

The default is WindowsDomain.

If this attribute is set to None, the msmqProtectionLevel attribute must also be set to None. This attribute is of type MsmqAuthenticationMode

msmqEncryptionAlgorithm

Specifies the algorithm to be used for message encryption on the wire when transferring messages between message queue managers. Valid values include the following:

msmqProtectionLevel

Specifies the way messages are secured at the level of the MSMQ transport. Encryption ensures message integrity, while sign and encrypt ensures both message integrity and non-repudiation. That is, the message indeed came from the sender and the sender is who he says he is. Valid values include the following:

  • None: No protection.

  • Sign: Messages are signed.

  • EncryptAndSign: Messages are encrypted and signed.

  • The default is Sign.

msmqSecureHashAlgorithm

Specifies the hash algorithm to be used for computing the message digest. Valid values include the following:

  • MD5

  • SHA1

  • SHA256

  • SHA512

The default is SHA1. This attribute is of type MsmqSecureHashAlgorithm.

Child Elements

None

Parent Elements

Element Description

<security> of <netMsmqBinding>

Defines the transport security settings for queued transports.

See Also

Reference

MsmqTransportSecurityElement
Transport
Transport
MsmqTransportSecurity

Concepts

<binding>

Other Resources

Queues in WCF
Securing Services and Clients
Windows Communication Foundation Bindings
Configuring System-Provided Bindings
Using Bindings to Configure Services and Clients