问题描述

我正在开发使用数字证书保护的Web服务.
我已将Web服务的属性设置为需要客户端证书"，并且尝试从客户端访问Web服务，但无法访问，这是正确的.但是即使安装了证书(.cer文件也不只包含公共密钥)，我也无法访问.所以我尝试安装(.pfx，带有私钥和公钥的文件)，我可以访问.

我的问题是:
在客户端，是否需要安装.pfx文件.
如果是，与客户端共享私钥是否安全.

Hi,

I am developing a web service secured with digital certificates.
I have set property of web service to "require client certificates" and i tried accessing the web service from client and i am not able to access, which is correct. But even after installing certificate (.cer, file does not include only public key), I am not able to access. So i tried installing (.pfx, file with both private and public key), I am able to access.

My question is:
At client side,is it necessary to install .pfx file.
If yes, is it safe to share private key with client.

Thanks in advance.

推荐答案

这篇关于网络服务和数字证书的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持！