.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

Digitally sign SAML assertion with the user's certificate

Posted By:      Posted Date: September 17, 2010    Points: 0   Category :WCF
I know how to digitally sign a SOAP message with the server's certificate using WCF, but is it possible to sign the SOAP message or maybe a signle element inside the message with the user's certificate without having the user's certificate in the server's key store? For example, can a SAML assertion or other element be created, then the user prompted to sign that element, and then have then element (with the user's signature on it) placed in the outgoing message?

View Complete Post

More Related Resource Links

WPF, How to allow user to digitally sign WPF form?


I am implementing WPF Form, I would like to allow manager to put his signature at the bottom of the form using stylus.

WPF, How to allow user to digitally sign WPF form?

Post the SAML Response in an HTML form to the assertion consumer service

Hi,   Can anyoner please help me in how to post the SAML Response in an HTML form to the assertion consumer service. I have generated the saml reponse and want to send the same to the re-directing url.  

Claims Walkthrough: Creating Trusted Login Providers (SAML Sign-in) for SharePoint 2010

Learn how to create a custom security token service (STS) and set up a trust relationship between a SharePoint 2010 farm and the custom STS

Implementing Single Sign-On using SAML 1.1, x.509, LDAP in C#.net

Hi, I got a requirement from the client i.e implementing single sing on using SAML 1.1( LDAP & X.509)in .net. I searched almost entire internet but no use. I have perfect knowledge regarding SAML but i dont know how to implement it in C#.net. Where do i get any papers or document that tells how to implement SSO using SAML in .net . What are the key steps involved in implementing it? What are the topics i need to cover to complete this task. I am literally struck at this point, any help would be apprciated. Thanks in advance sam

How Configure Sharepoint Single Sign-On for External Domain User?

Hi, Good Day All, How to configure MOSS 2007 single sign-on For External Domain User, these external domain users are in the members of internal domain but when they access portal out side the domain then portal ask his credential. Is there any way to provide/Configure Sign Sign-On facility for External Users. Thanks, Iftikhar Hashmi

Sharepoint 2010 popup page issue while sign in as diferrent user


We have a SharePoint 2010 portal in which one of the functionalities opens a list item add form as a popup. We customized this add form using SPD by adding the following java script functions.

<script type="text/javascript">



function PreSaveAction()

 var reqType= document.getElementById("ctl00_xxxxxxxxxxxxx_ctl00_Lookup").value;
 reqType= reqType.replace(/^\s+|\s+$/g, '');

 var reqDesc= document.getElementById("ctl00_xxxxxxxxxxxxx_ctl00_TextField").value;
 reqDesc= reqDesc.replace(/^\s+|\s+$/g, '');
 var error="";
   error=error+" &";
  error=error+" Description";

 error=error+ " can not be empty";

Web Service credentials after 'Sign in as different user'


I am connecting to exchange using the exchange web service from within Sharepoint Server enterprise edition (2010) code running in an application page





service.Url = 


service.Credentials = System.Net.

using a x509 certificate to sign XML using SignedXml class


Hi All,

I am trying to sign an XML file. The code is basically exactly the same as the MSDN sample: http://msdn.microsoft.com/en-us/library/ms229745.aspx

I set the XmlResolver to null:

var settings = new XmlReaderSettings()
          ValidationType = ValidationType.None,
          ProhibitDtd = false,
          IgnoreWhitespace = true,
          XmlResolver = null

This exception is thrown when i call: signedXml.ComputeSignature();

when I do, I receive the following exception:

-  $exception {"An error has occurred while opening external DTD 'http://www.apple.com/DTDs/PropertyList-1.0.dtd': Request for the permi

Hide SharePoint Ribbon for anonymous user (Not the Sign In Link)



We need to hide the Sharepoint 2010 ribbon for anonymous users. But we should have the Sign In Link (which is a part of the Ribbon, I believe). Please let me know the steps for this.

The Sharepoint site has been setup for custom form based authentication.


Aritra Saha.

Certificates: Cannot find the certificate and private key for decryption Error when sign

Note: from stackoverflow: I think is better for system administrators.

I work in company with many servers and Pcs for developers. Servers are win2003, PC developers Windows XP.

In a server Win2003 named preiis01, in preproduction environment, other people in company install a client certificate using any other user (domainCompany\adminsystems) for logging in server preiis01.

Anyone admin uses the user "domainCompany\adminsystems" for log in server preiis01 (using Terminal Server, Remote Desktop for Windows XP).

the admin user is domainCompany\adminsystems", which installs certificate.

Admin user install it like this:

Session login like "domainCompany\adminsystems"
Certificate is PFX file. Do Install PFX and using Wizard. The key private not check for export.
Input the password and install.

There is an application Web which AppPool Identity is: NETWORK SERVICE account.

web server is IIS 6.0.

in preiis01,

That admin user executes mmc -> Snap in -> Certificates for Local Machine. In no

Get the Sign In as a different user event in sharepoint site.



i want to save some data for a each user when he/she log out from a sharepoint site ,

so can i get the  event of "sign in as a diffenrent user" in sharepoint .

One user cannot sign in to my sharepoint site collection


I have a site collection in my Farm. One of my user si saying that she cannot sign in from today. till yesterday she was able to sign but now if she tries to sign in the it gives her unathorized error 401.

Every other users are able to sign in just a single user.

My site is anonymous and uses Windows Aunthentication.

Any Help anyone...


"Sign in as a different user" unstable in MOSS 2007


In our MOSS 2007 environment, we have recently experienced problems with signing in as a different user, using the Welcome menu. When clicking "Sign in as a different user" the logon dialog pops up, and user credentials are provided. When pressing OK, nothing seems to happen. But after pressing F5 a number of times (typically 1 - 5), the user displayname suddenly changes to the expected one. It is not until the displayname actually changes, that the authorizations of that is asociated with the "new" user kicks in.

The problem exist with both IE7 and IE8 and maybe earlier.

SAML Assertion encryption on STS, adding wsd:Id to EncryptedData element


Using WIF/WCF on Server2008 and .NET 3.5, trying to connect to a service on Oracle Service Bus. Policy calls for SAML Assertion, sender-vouches, asymmetric keys.

Sender-vouches seems to imply both signing and encryption of the SAML Assertion at the STS before serialization into the RSTR, implying that it doesn't get decrypted and verified until it gets all the way to the Relying Party.

Signing works fine, and encryption works fine, too. But when the client attempts to pass through the resulting encrypted "blob," it chokes with "element to sign must have id."

On closer examination, it appears that the STS does not add the wsu:id attribute to the EncryptedData element. The "wsu:Id" is more fomally known as "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd:Id," and it's essential for signing any element (with the exception of the SAML Assertion, but that's another story with another interop solution).

The wsu:Id is perfectly legal for <EncryptedData> elements, and so the answer has to be to add it at the time the element is created.

Is there a quick and easy way to get this attribute added? It can be done in WCF, but that requires all that custom plumbing. I'm looking at GovindR's ReserializeSaml at the moment, and it seems a mighty big gun for such a small task.

hiding " Sign in as a Diffrent user" from top right pop up



I dont want want to show "Sign in as Diffrent User" in top right pop up if a normal user logs in.But it should be shown when a user with full privileges logs in.

How can I achieve this?

MS SQL Server: Disconnect Users From Database - Kill User Session

If you ever wanted to restore your database from a SQL backup file (.bak), but there are still users connected to your database, the backup operation will fail causing the error: Exclusive access could not be obtained because the database is in use.

Choosing Between a User Control or Web Part for SharePoint

SharePoint will only display Web Parts on a page. However, there are publicly available shims that allow you to write user controls and have them be displayed as a Web Part. From SharePoint's point of view, the shim is a Web Part. From the point of view of the user control, the shim is simply a control in .NET that is including the user control
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend