c# - Impersonating to X509Store.Add to StoreName.Root - The Request Is Not Supported -

-

i cannot find related error encountering.

the problem encountering cryptographicexception on store.add below:

"the request not supported."

the msdn documentation not helpful, states that:

the certificate not added store.

i used following code guide, following change:

  • they adding storename.my , i want add storename.root
  • i want use idisposable class impersonate user.

my proof of concept code (abridged/shoddy):

public class userlogonimpersonator : idisposable {     private windowsimpersonationcontext _impersonationcontext = null;     private const int logon_interactive = 2;     private const int provider_default = 0;      [dllimport("advapi32.dll", setlasterror=true)]         private static extern int logonuser(         string lpszusername,         string lpszdomain,         string lpszpassword,         int dwlogontype,         int dwlogonprovider,         ref intptr phtoken);      public userlogonimpersonator()     {         _impersonationcontext = null;         intptr userhandle = intptr.zero;         const string domain = "domain";         const string user = "user";         const string hcpw = "password";          try         {             int logonresult = logonuser(user, domain, hcpw,                  logon_interactive, provider_default, ref userhandle);             bool isloggedon = logonresult != 0;              if (isloggedon)             {                 _impersonationcontext =                      windowsidentity.impersonate(userhandle);             }          }         catch(exception e)         {             // handle exception         }     }      public void dispose()     {         // undoimpersonation();     }      // private methods ... }  public class certservice {     public void addcerttorootstore()     {         using(new userlogonimpersonator())         {             x509certificate2 rootcert =                  new x509certificate2(certdata.certfilepath);             x509store store =                  new x509store(storename.root, storelocation.currentuser);             store.open(openflags.maxallowed);             store.add(rootcert);             store.close();         }     } }

i can remove impersonation , no exceptions thrown, not correct user's store.

with impersonation, can put cert storename.authroot without exception. not store want cert go into.

neither of these exception-free solutions work. require program run elevated privileges , go user's store.

i solved doing manually.

i wanted automate "test chain certificates." our third party ca gave set of certificates .local domain.

our real-life use case have root , chain certificate installed.


Comments

Post a Comment

Popular posts from this blog

ZeroMQ on Windows, with Qt Creator -

-
i have installed zmq link given below on windows 7. http://zeromq.org/distro:microsoft-windows 1) have c++ project in qt-creator , i'm using zmq c++ binding (zhelpers.hpp etc). 2) have added .lib installed zmq folder qtcreator 3) while compiling, compiler looks _imp__zmq_verion, in .dll files present in .lib have __imp_zmq_version. 4) causing undefined reference zmq_version. anyone else faced problem , has solution ?
Read more

python - Error while using APScheduler: 'NoneType' object has no attribute 'now' -

-
i have python app hosting on heroku. use apscheduler call function every day @ time. strange thing 1 time function runs after while have following error log: exception in thread apscheduler (most raised during interpreter shutdown): 2017-09-06t15:03:28.347848+00:00 app[web.1]: traceback (most recent call last): 2017-09-06t15:03:28.347858+00:00 app[web.1]: file "/app/.heroku/python/lib/python2.7/threading.py", line 810, in __bootstrap_inner 2017-09-06t15:03:28.347859+00:00 app[web.1]: file "/app/.heroku/python/lib/python2.7/threading.py", line 763, in run 2017-09-06t15:03:28.347861+00:00 app[web.1]: file "/app/.heroku/python/lib/python2.7/site-packages/apscheduler/schedulers/blocking.py", line 27, in _main_loop 2017-09-06t15:03:28.348167+00:00 app[web.1]: <type 'exceptions.attributeerror'>: 'nonetype' object has no attribute 'now' any guesses? the full code long here key parts: def startdayauto(): global ...
Read more

ios - MKAnnotationView layer is not of expected type: MKLayer -

-
Image
so code works fine logger riddled message. there way rid of or suppress it? postannotation.swift class postannotation: mkpointannotation { //mark: properties let post: post //mark: initialization init(post: post) { self.post = post super.init() self.coordinate = cllocationcoordinate2d(latitude: post.latitude, longitude: post.longitude) self.title = post.title self.subtitle = post.timestring() } } adding annotation let annotation = postannotation(post: post) self.map.addannotation(annotation) func mapview func mapview(_ mapview: mkmapview, viewfor annotation: mkannotation) -> mkannotationview? { if annotation mkuserlocation { return nil } var annotationview = mapview.dequeuereusableannotationview(withidentifier: "pin") as? mkpinannotationview if annotationview == nil { annotationview = mkpinannotationview(annotation: annotation, reuseidentifier: "pin") ...
Read more