CSP Blobs between C# and C++ – Interoperation with the Microsoft...
If you have a requirement as follows: Interoperate between C# & C++ using cryptographic blobs. Generate the private and public keys in C#. See code below: public void GenerateKeys(out byte[]...
View ArticleAdditional details on AF CU8 release
The latest version of AF 1.1 CU (cumulative update) 8 was released on 12/7/2016, and available on https://www.microsoft.com/en-us/download/details.aspx?id=54440. The detailed hotfix information is...
View ArticleClik here to view.
WCF: Message Security limitation with TLS 1.2 protocol
Issue: WCF Message Security breaks when using or forced to use TLS 1.1 or TLS 1.2 protocol. Re-pro code: https://1drv.ms/f/s!ArgnWb8iHXB6gqcg43hmT5jjbKJ-IA We can disable SSL 3.0 and TLS 1.0 inside...
View ArticleClik here to view.
WCF: Federating WCF with WIF
Ask: Federate WCF service via WIF Traditional approach: For normal web app or MVC app, we follow the concept of FedAuth cookie. Client -> Federated Application, gets redirected to STS Client ->...
View ArticleWIF: WIF10201: No valid key mapping found for securityToken:
Issue: WIF10201: No valid key mapping found for securityToken: This exception is observed on a federated application(web app / mvc / asmx / wcf) using WIF pipeline to authenticate the user. Stack:...
View ArticleClik here to view.
ADAL: Secure Web API with ADFS 3.0 for Desktop Client
I came across one of the requirements, where my customer requested me to create a sample ASP.NET WEB API application, and later be consumed by a rich desktop client like WPF. It had one OAuth 2.0...
View ArticleWIF: Memory leak issue with WIF 3.5 – Microsoft.IdentityModel.Tokens –...
Issue:Recently we came across a case where memory leak issue is identified within WIF 3.5 DLL inside the "Microsoft.IdentityModel.Tokens" class. How does this happen: The source code has a coding BUG...
View ArticleWCF/WS/TLS: Get .Net Framework 4.0 application use TLS1.2 as default protocol
Issue: By default, .net application built on framework 4.0 will use SSL3.0 or TLS1.0 as default protocol. Ask: If we need to force it to use TLS1.2 protocol, review below workarounds. Workaround 1: Use...
View ArticleASMX/WS/WCF Web Service: System.Net.Sockets.SocketException: An existing...
Issue: Intermittent Socket exception seen on client application trying to fetch data from MS web services. Troubleshooting: I recommend collecting application level traces to collect the stack trace...
View ArticleWCF/WS: SSL Mutual Client Cert Authentication 403.16 or 403.7
Problem When attempting to use a certificate to authenticate to an IIS website or self hosted WCF service over SSL/TLS channel, we receive a 403.16 error code. Troubleshooting We can collect server...
View ArticleWCF: Support for Wild Card Host Header at IIS 10 and above
IIS 10 came with new feature to support Wild Card Host Headers. https://docs.microsoft.com/en-us/iis/get-started/whats-new-in-iis-10/wildcard-host-header-support Does WCF support it? WCF does not...
View ArticleClik here to view.
WCF: Consume WCF REST service by HttpClient
In a recent case, one of my customers requested how to consume the WCF REST Service by taking the help of System.Net.Http.HttpClient modules (introduced in .NET 4.5). I hope the following details would...
View ArticlePBKDF2 .Net API does not exists with SHA256 implementation. Here PBKDF2...
PBKDF2 .Net API does not exists with SHA256 implementation. This is true and we know that we have the Rfc2898DeriveBytes class which implements password-based key derivation functionality, PBKDF2, by...
View ArticleCryptoConfig is not able to identify HashPbkdf2 from the machine.config file,...
To know more about CryptoConfig please refer to https://msdn.microsoft.com/en-us/library/system.security.cryptography.cryptoconfig(v=vs.110).aspx It's a class that accesses the cryptography...
View ArticleAF: AppFabric Invalid Version Error
On a clustered environment when you try to start the AppFabric caching service you may encounter the error AppFabric Invalid Version Error. You will see the following exception logged in the AppFabric...
View ArticleRecovering COM+ Applications from a hang state
Recently, I worked with some customer problems where they encountered issues with COM+ application going into a hang state. This causes sometimes the main applications to wait indefinitely without...
View ArticleClik here to view.
WIF: Active authentication against “usernamemixed” ADFS endpoint
Scenario One of my customers recently wanted to help write code/ configuration in the following scenario. ASP.NET web application and WCF service would be hosted on two different machines (IIS web...
View ArticleWS/WCF: Remove Server Header
Requirement: Need to suppress all instances of the HTTP ‘Server’ header from all HTTP responses including invalid requests that never even reach the application process. Why we need this: Exposing...
View ArticleClik here to view.
WIF: Fetch SAML tokens from IssuedToken* endpoint for backend service call
Recently, I have across a scenario where the requirement is to fetch token from "IssuedToken*" active ADFS endpoints. Once application has the token from "IssuedToken*" endpoint, it would have to...
View ArticleClik here to view.
WCF: Windows authentication and streaming support
Issue: We had a requirement to use STREAMING protocol along with WINDOWS AUTHENTICATION. Out of the box configuration: Above binding configuration will not help us here and we will end...
View Article