.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

Could not create SSL/TLS secure channel

Posted By:      Posted Date: September 16, 2010    Points: 0   Category :ASP.Net
I have a web service which calls into another web service. My web service allows anonymous access and the application pool runs under the "Local System" identity. I get the following error when my web service calls another web service which requires a cert for SSL:Could not create SSL/TLS secure channelI enabled a diagnostic trace, the end of which says:System.Net Information: 0 : [4168] SecureChannel#16871348 - Certificate is of type X509Certificate2 and contains the private key.System.Net Information: 0 : [4168] AcquireCredentialsHandle(package = Microsoft Unified Security Protocol Provider, intent  = Outbound, scc     = System.Net.SecureCredential)System.Net Error: 0 : [4168] AcquireCredentialsHandle() failed with error 0X8009030D.System.Net Information: 0 : [4168] AcquireCredentialsHandle(package = Microsoft Unified Security Protocol Provider, intent  = Outbound, scc     = System.Net.SecureCredential)System.Net Error: 0 : [4168] AcquireCredentialsHandle() failed with error 0X8009030D.System.Net.Sockets Verbose: 0 : [2928] Socket#13716631::Dispose()System.Net Error: 0 : [2928] Exception in the HttpWebRequest#19726116:: - The request was aborted: Could not create SSL/TLS secure channel.System.Net Error: 0 : [2928] Exception in the HttpWebRequest#19726116::EndGetResponse - The request was aborted: Could not create SSL/TLS secur

View Complete Post

More Related Resource Links

"The request was aborted: Could not create SSL/TLS secure channel." when calling third party web ser


I have a webservice that calls a third party web service over https. It used to work properly but now it's giving me problems in my dev and test environments. I don't want to attach the client certificate manually as the web service on production is running without any trouble. For the dev/testing I'm using the following code to work around the validation:


ServicePointManager.ServerCertificateValidationCallback = new RemoteCertificateValidationCallback(ValidateCertificate);


public bool ValidateCertificate(object sender, X509Certificate certificate, X509Chain chain, SslPolicyErrors errors)
      return true;



I also discovered that this might be because of an old microsoft security patch http://support.microsoft.com/kb/980436.

I have tested this service on machines with and without this patch and the result is the same error.

{System.Net.WebException: The request was aborted: Could not create SSL/TLS secu

Secure It: WS-Security and Remoting Channel Sinks Give Message-Level Security to Your SOAP Packets


As more organizations adopt XML-based Web Services, the need for message-level security has become evident. WS-Security, now supported in the Microsoft .NET Framework, addresses this need. Using the WS-Security framework, developers can implement channel sinks to intercept Remoting messages as they pass through the .NET Remoting infrastructure. The sink can read the message, change it, and pass it along. During this process, the message can be signed for added security. This article explains how to implement a Remoting channel sink that will modify the Remoting message by including a UserName token in the header, then sign the body using the token.

Neeraj Srivastava

MSDN Magazine November 2003

.NET Remoting: Secure Your .NET Remoting Traffic by Writing an Asymmetric Encryption Channel Sink


As .NET Remoting gains popularity in the enterprise space, it must meet business demands for trustworthy computing. Remoting traffic can be secured when objects are hosted in IIS, but when they aren't hosted in IIS, custom security solutions can be developed to secure them. This article provides an in-depth look at writing channel sinks for .NET. It also details the flow of data through custom channel sinks and explains the kinds of manipulations that can be performed on that data.

Stephen Toub

MSDN Magazine June 2003

create a secure new item form



i hope i can explain this the right way.

i'm using sharepoint services 3.0 and sharepoint designer

i have to create this senario:

the employee need to fill in a new item form to request for absence or vacation days.

for this i use the Absence and Vacation Schedule template. a good one!

but the thin is i have to modify the "new item form" that when the user open the "new item form" it has to get the id from the employe and join it to the id of his manager. so when the employee fill in the form it can only go to the employe his manager for approval. the purpose for this senario is that the employee dont get a chance to send his request to another manager or to the HR department without an aproval.

is there a workflow for it. or how can i join the employee id with the manager id?

and how can i create a web part that counts the vacation days of an employe and also display how many days he has left so he knows how many days he can request for?

hope some1 can help me with this


Create a new target application - Secure Store Service administration issues

Hi,I am trying to create new target application, when I go to Secure Store Service in Centra admin I have:Cannot complete this action as the Secure Store Shared Service is not responding. Please contact your administrator.I have used this few days ago and avarything else is working fine on the server, and I have applications created with it running fine.Any help is appreciated.cheersValko

Secure channel cannot be opened because security negotiation with the remote endpoint has failed

Please help me to pinpoint what's wrong with the configurations. CoreClient client = new CoreClient(); client.ClientCredentials.UserName.UserName = "test"; client.ClientCredentials.UserName.Password = "test"; string msg = client.SayHello(); //==== ERROR Happens here Error message: Secure channel cannot be opened because security negotiation with the remote endpoint has failed. This may be due to absent or incorrectly specified EndpointIdentity in the EndpointAddress used to create the channel. Please verify the EndpointIdentity specified or implied by the EndpointAddress correctly identifies the remote endpoint. Configurations: Host: <behaviors> <serviceBehaviors> <behavior name="DefaultBehavior"> <serviceMetadata httpGetEnabled="true"/> <serviceDebug includeExceptionDetailInFaults="false"/> <serviceCredentials> <serviceCertificate findValue="MyServerCert" x509FindType="FindBySubjectName" storeLocation="LocalMachine" storeName="My"/> <userNameAuthentication userNamePasswordValidationMode="Custom" customUserNamePasswordValidatorType="Promotion.Services.UsernameValidator, LibraryIIS" /> </serviceCredentials> </behavior>

JBOSS WS WCF Client - Could not establish secure channel for SSL/TLS with authority 'xxx.xxx.xxx.xx


Hi all,

Ive been asking a lot of questions the last weeks but nothing came up.

I have a webservice developed in Java and hosted in JBOSS.

The current scenario is that the service should be running in a two way certificate, means that the server has a certificate and the client has one too.

I have already installed the two certs in the console (mmc), i see the certs so that should be ok.

After several test i came to this situation. The certs are ok, in debug mode i see that .NET finds those.

The service is hosted in a pc that is in our intranet.


Here is my code.


ServiceRef.ServiceClient servicioJboss = new ServiceRef.ServiceClient();

ServiceRef.methodResponse resp = new ServiceRef.methodResponse();

ServiceRef.method metodo = new ServiceRef.method();

metodo.arg0 = 1;

metodo.arg1 = 1402251;

metodo.arg0Specified = true;

metodo.arg1Specified = true;



"Could not establish secure channel" when chaining services with certificates


I am currently developing two web services which use mutual authentication with X.509 certificates. This works perfectly over one hop, but if I try to chain over a second hop I get this error:


"Could not establish secure channel for SSL/TLS with authority 'machine.mydomain.com'."

I have my client and both services all executing on the same machine in a test environment. I have IIS 7.5 installed, created a new website and apppool, and published both services as applications under the same site. Both services have https bindings set up in IIS using the same certificate. I have both the client certificate and the server certificate installed on the machine, and the CA is installed in the Trusted Root CA store. These are all installed under LOCAL_MACHINE.

From my client, I am able to call ServiceA, and everything works perfectly. In ServiceA, I have several unit test cases which call ServiceB - these also work with no problem. But, if I run Client, call ServiceA, and then ServiceA calls ServiceB, authentication between the two services fails. I have tried copying binding configuration from my unit test app.config to ServiceA's web.config, but that doesn't seem to make any difference.


I can post the configuration data from web.config if anyone wants to see it, but given the fact that calls from Client => S

How to create 3 tier application using LINQ

As you know that in 3 tier architecture there are three layers

User interface layer. (Is our Form in Windows application and .aspx page in Web application)
Data Access layer. (Which provides interface between Business logic layer and Database)
Business Logic layer.(Which stores your application logic)

Create ToolTip for GridView Header

The following allows you to add a tooltip to the header links of your GridView, a feature that is lacking.

Create And Run Excel Macro At Runtime in C#

You've been tasked with writing a Windows Form application using the .NET Framework that interacts with Microsoft Excel. If you are new to working with Excel in .NET and are having trouble learning how to format certain cells or cell ranges, then this little tip will come in handy. Rather than scour the internet hoping to find the correct set of constants or method syntax for formatting your spreadsheet, use the built in tools in Excel to write the familiar VBA code for you. Then, you can paste the VBA code generated by Excel into the sample C# code below and run it dynamically at runtime.

Create and Use a Typed DataSet by Using Visual C# .NET

This article shows you how to create and use a typed DataSet in a small Web application. Typed DataSets, which inherit from the DataSet class, create first-class members of a DataSet's DataTables and DataColumns, yielding the many benefits that come with the use of strong typing.

Connestion string create any database server

This links important to how to create connection string to any data base sever.

Dynamically Create Controls in ASP.NET by Using Visual C# .NET

This article demonstrates how to dynamically create a control for an .aspx page. The sample project does the following:
Creates two TextBox controls.
Verifies that the contents (TextBox.text) and the attributes of the TextBox are saved across posts to the server.
Illustrates handling events that are posted by a dynamically-created control

Dynamically Create Controls in ASP.NET with Visual Basic .NET

This step-by-step article describes how to dynamically create controls for an ASPX Web page.

The sample project does the following:
It creates two TextBox controls.
It verifies that the TextBox contents (TextBox.text) and attributes are saved across posts to the server.
It describes how events that are posted by a dynamically created control are handled.

How to create a windows mobile (Smart Device) .Cab installer

A Cab file is the default setup format for Windows CE and Windows Mobile devices (similar to windows .msi files). You probably already have installed several application using .cab files, and are familiar with the concept. One point which is often unknown is that .cab files are processed by wceloader.exe, and it can only install one .cab file at a time. That means we cannot have nested .cab files. It doesn't mean we cannot have .cab files contained by another .cab, but the contained .cab files will not be installed during the installation of the container .cab. We should install it manually after the container .cab file installation has been completed.

There are two ways to create a cabinet (.Cab) file. The traditional one, and the friendly VS Smart Device Cab project which doesn't require additional coding, but which also relies on the traditional one at low-level.

Create Web Site vs Web Application


I follow the tutorial and creted a web site for my company sales system. One of my collegue mention we use the wrong templet, we should use Web application for company application.

Should i continue using web site or change to web application? We are creating application for company sales, inventory, hr ,etc where possible more than 1000++ user. And during month end, it will be high traffic and transaction. can Web Site Template with BLL and DAL handle it? or i just need a powerful server?

ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend