http://www.codeplex.com/WCFSecurity/Wiki/View.aspx?title=HomeWCFSecurity Wiki Rss Descriptionhttp://wcfsecurity.codeplex.com/wikipage?title=How To - Use SQL Role Provider with Username Authentication in WCF calling from Windows Forms&ANCHOR#C26772I know this has been around for while, but this is one of the best documents I've seen on how to implement SQL role provider through a WCF service. My question is, the last comment of Step 9 doesn't make sense (to me). There is no mention in Step 6 about installing a Root Authority certificate.

Perhaps somebody can explain this better?PaulMouchetMon, 04 Mar 2013 17:30:25 GMTNew Comment on "How To - Use SQL Role Provider with Username Authentication in WCF calling from Windows Forms" 20130304053025Phttp://wcfsecurity.codeplex.com/wikipage?title=Internet – WCF and ASMX Client to Remote WCF Using Transport Security (HTTP)&ANCHOR#C24484When using a custom http module as described in the above example be sure to set your app pool on IIS to classic mode. See http://msdn.microsoft.com/en-us/library/ms227673.aspx for more infokritlopMon, 23 Jul 2012 05:22:44 GMTNew Comment on "Internet – WCF and ASMX Client to Remote WCF Using Transport Security (HTTP)" 20120723052244Ahttp://wcfsecurity.codeplex.com/wikipage?title=Video Index&ANCHOR#C22873testforsandeshFri, 09 Mar 2012 19:32:47 GMTNew Comment on "Video Index" 20120309073247Phttp://wcfsecurity.codeplex.com/wikipage?title=Video Index&ANCHOR#C22872very cursory to say the least!!forsandeshFri, 09 Mar 2012 19:32:37 GMTNew Comment on "Video Index" 20120309073237Phttp://wcfsecurity.codeplex.com/wikipage?title=How To - Use Certificate Authentication and Message Security in WCF calling from Windows Forms&ANCHOR#C22780How do you call this service from a non .net client???sedatikoThu, 01 Mar 2012 22:00:21 GMTNew Comment on "How To - Use Certificate Authentication and Message Security in WCF calling from Windows Forms" 20120301100021Phttp://wcfsecurity.codeplex.com/wikipage?title=Questions and Answers&ANCHOR#C21200how authenticate in webHttpBinding using custom username & password?GBKMon, 10 Oct 2011 05:24:59 GMTNew Comment on "Questions and Answers" 20111010052459Ahttp://wcfsecurity.codeplex.com/wikipage?title=Video Index&ANCHOR#C19005Truly not enough in depth information about best practices of WCF Security. Had to go elsewhere for WCF Security information.HaddicusTue, 22 Mar 2011 16:48:54 GMTNew Comment on "Video Index" 20110322044854Phttp://wcfsecurity.codeplex.com/wikipage?title=If your clients are deployed within intranet then choose transport security&ANCHOR#C18480I try connect to WebService PHP (in Apache Server in intranet) using WCF and CustomBinding. Code sample for configure security programaticaly ?alhambraeidosTue, 08 Feb 2011 12:25:42 GMTNew Comment on "If your clients are deployed within intranet then choose transport security" 20110208122542Phttp://wcfsecurity.codeplex.com/wikipage?title=How To - Create and Install Temporary Certificates in WCF for Message Security During Development&ANCHOR#C17693I must be missing something here, but in step 3 we are creating and installing a temp cert on the server and 4 we are giving permissions to WCF identity process correct? Then we are asked to open a visual studio command prompt to run a makecert and findPrivateKey command, is this assuming that i have visual studio in stalled on the server?
Paulpaul3654Wed, 17 Nov 2010 12:27:30 GMTNew Comment on "How To - Create and Install Temporary Certificates in WCF for Message Security During Development" 20101117122730Phttp://wcfsecurity.codeplex.com/wikipage?title=How To - Use Certificate Authentication and Message Security in WCF calling from Windows Forms&ANCHOR#C16266I have this error The caller was not authenticated by the service.

This is configuration in client

 <client>
 <endpoint address="http://localhost:49981/AKTWCFService/Service.svc"
 behaviorConfiguration="NewBehavior" binding="wsHttpBinding"
 bindingConfiguration="wsHttpEndpoint" contract="ServiceReference1.IService"
 name="wsHttpEndpoint">
 <identity>
 <dns value="" />
 <certificate encodedValue="" />
 <certificateReference findValue="" />
 </identity>
 </endpoint>
 </client>

In this line no appear <certificate encodedValue="" />jsolerTue, 06 Jul 2010 18:33:17 GMTNew Comment on "How To - Use Certificate Authentication and Message Security in WCF calling from Windows Forms" 20100706063317Phttp://wcfsecurity.codeplex.com/wikipage?title=Internet %25u2013 Windows Forms Client Calling WCF Using Message Security&ANCHOR#C15651how can we make the application name dynamic, i mean if the client to pass the application name in the membership providervontlinMon, 03 May 2010 06:03:30 GMTNew Comment on "Internet – Windows Forms Client Calling WCF Using Message Security" 20100503060330Ahttp://wcfsecurity.codeplex.com/wikipage?title=Do not divulge exception details to clients in production&ANCHOR#C14729Any comments about FaultReason ?? If you are in Debug mode (visual studio 2008) , get error about FaultReason.alhambraeidosWed, 27 Jan 2010 11:36:58 GMTNew Comment on "Do not divulge exception details to clients in production" 20100127113658Ahttp://wcfsecurity.codeplex.com/wikipage?title=How To - Use wsHttpBinding with Windows Authentication and Message Security in WCF from Windows Forms&ANCHOR#C14690In the summary paragraph - a typo - says this article is about using 'transport' security.. . .instead of message security.KentKFri, 22 Jan 2010 15:30:14 GMTNew Comment on "How To - Use wsHttpBinding with Windows Authentication and Message Security in WCF from Windows Forms" 20100122033014Phttp://wcfsecurity.codeplex.com/wikipage?title=How To: Impersonate the Original Caller in WCF calling from a Windows Form&ANCHOR#C14606I can't watch this video due to the narrator's voice. Hoarse, monotonal, nasal, without effective inflection. UNREAL.jericsmithMon, 11 Jan 2010 18:07:50 GMTNew Comment on "How To: Impersonate the Original Caller in WCF calling from a Windows Form" 20100111060750Phttp://wcfsecurity.codeplex.com/wikipage?title=How To - Use netTcpBinding with Windows Authentication and Message Security in WCF from Windows Forms&ANCHOR#C14388If one of the objectives for this article is "Learn why you need service principle names (SPNs) and how to create them " then it's a fail, nowhere do I see them mentioned, in addition, NetworkService accont is used and not custom account.sdahlbacTue, 08 Dec 2009 08:13:42 GMTNew Comment on "How To - Use netTcpBinding with Windows Authentication and Message Security in WCF from Windows Forms" 20091208081342Ahttp://wcfsecurity.codeplex.com/wikipage?title=Use a global exception handler to catch unhandled exceptions&ANCHOR#C14381Another way to get the exception details of what caused the fault. Credits http://www.haveyougotwoods.com/archive/2009/06/24/creating-a-global-error-handler-in-wcf.aspx

 public class ErrorHandler : IErrorHandler
 {
 public void ProvideFault(Exception error, MessageVersion version, ref Message fault)
 {

 }

 public bool HandleError(Exception error)
 {
 Console.WriteLine("exception")&#59;
 return false&#59;
 }
 }

 public class ErrorServiceBehavior : IServiceBehavior
 {
 public void Validate(ServiceDescription serviceDescription, ServiceHostBase serviceHostBase)
 {

 }

 public void AddBindingParameters(ServiceDescription serviceDescription, ServiceHostBase serviceHostBase, Collection<ServiceEndpoint> endpoints, BindingParameterCollection bindingParameters)
 {

 }

 public void ApplyDispatchBehavior(ServiceDescription serviceDescription, ServiceHostBase serviceHostBase)
 {
 ErrorHandler handler = new ErrorHandler()&#59;
 foreach (ChannelDispatcher dispatcher in serviceHostBase.ChannelDispatchers)
 {
 dispatcher.ErrorHandlers.Add(handler)&#59;
 }
 }
 }


servicehost.Description.Behaviors.Add(new ErrorServiceBehavior())&#59;snakefootMon, 07 Dec 2009 10:23:51 GMTNew Comment on "Use a global exception handler to catch unhandled exceptions" 20091207102351Ahttp://wcfsecurity.codeplex.com/wikipage?title=How To - Perform Message Validation with Schemas in WCF&ANCHOR#C14331Is schema validation possible with webHttpBinding? 

I would think that validating incoming messages with a schema on a WCF web service would be standard, but I cannot find anything about it.

Please help. 
Thanks!darrenwwwaTue, 01 Dec 2009 11:09:59 GMTNew Comment on "How To - Perform Message Validation with Schemas in WCF" 20091201110959Ahttp://wcfsecurity.codeplex.com/Wiki/View.aspx?title=How To - Create and Install Temporary Certificates in WCF for Message Security During Development&ANCHOR#C13689FindPrivateKey doesn't returns the location of the private key for the certificate.
FindPrivateKey.exe My LocalMachine –n "CN=tempCert" always providing help information like as follows...

D:\Certificates>FindPrivateKey my CurrentUser -n "CN=tempCert"
FindPrivateKey helps user to find the location of the Private Key file of a X.50
9 Certificate.
Usage: FindPrivateKey <storeName> <storeLocation> [{ {-n <subjectName>} | {-t <t
humbprint>} } [-f | -d | -a]]
 <subjectName> subject name of the certificate
 <thumbprint> thumbprint of the certificate (use certmgr.exe to get it)
 -f output file name only
 -d output directory only
 -a output absolute file name
e.g. FindPrivateKey My CurrentUser -n "CN=John Doe"
e.g. FindPrivateKey My LocalMachine -t "03 33 98 63 d0 47 e7 48 71 33 62 64 76 5
c 4c 9d 42 1d 6b 52" -c

I tried providing 'thumbprint' also. But, no use.. Can any one help me how to resolve this issue?chandrasena111Mon, 31 Aug 2009 12:39:31 GMTNew Comment on "How To - Create and Install Temporary Certificates in WCF for Message Security During Development" 20090831123931Phttp://wcfsecurity.codeplex.com/Wiki/View.aspx?title=How To - Use Certificate Authentication and Message Security in WCF calling from Windows Forms&ANCHOR#C13645Great article. The certificate based message security works great.
But I have one big problem:
If on clientside something is wrong with the installed certificates or the client certificate is missing the service is going to faulted state immediately. The error is thrown before my custom code is executed. The service has to be restarted manually on the server. Is there some parameter in the configuration that prevents this behaviour?

Best regards
Alex form Berlin, GermanyakleinwaechterMon, 24 Aug 2009 14:36:12 GMTNew Comment on "How To - Use Certificate Authentication and Message Security in WCF calling from Windows Forms" 20090824023612Phttp://wcfsecurity.codeplex.com/Wiki/View.aspx?title=How Tos&ANCHOR#C13586Maye you guys could add a howto on implementing TransportWithMessageCredential security without IIS using net.tcp
Verifying the client's certificate...and then verifying the username and password using a custom validator.
Apperantly none of the samples and fixes on the internet really cover all the problems(like getting the server to trust the client's certificate even though it's set to chain trust and the root provider is added on both ends)... :)LooooookaFri, 14 Aug 2009 11:06:08 GMTNew Comment on "How Tos" 20090814110608A