Hello!
You wrote on Wed, 05 Mar 2008 14:23:45 +0100:
??>> Are you asking about server's certificate or the ceritificate used for
??>> client-side authentication?
GP> Client-side.
GP> I suppose it works just like for the browser, doesn't it? The client
GP> connects to an https:// URL, and the server provides the client with
its
GP> certificate. Right?
Not at all. Either you are mixing the client-side authentication with what
you see, or one of the above.
Client-side authentication is when the client tells the server, who the
client is. This type of authentication is used relatively rarely (comparing
to regular HTTPS communication). The certificate used for a client-side
authentication is the property of the client. It's stored either in Windows
Certificate storage or in hardware (cryptocards and USB cryptotokens). When
you connect to the server that requires client-side authentication, system
components of Windows (if you use HttpWebRequest class) attempt to choose
the certificate to use in authentication among the certificates located in
Windows Certificate storage. As said, probably you can specify other
certificate (for example the one you loaded from PFX file).
With best regards,
Eugene Mayevski
http://mayevski.blogspot.com/