I have an Asp.Net core app which has a lot of PFX certificates, those certificates are added as resource to the application, each certificate has a specific client. This Asp.net app is responsible to validate the user through username/password, retrieve the stored PFX certificate and submit a POST request to another application, which I don`t have access to.
Everything works fine when running on localhost, however, when I deploy the solution(I`m deploying it in Ubuntu and IIS) I receive SSL exception which states the connection was not possible to be stablish.
I have performed a few tests and came to the conclusion that it is not the third part server which is refusing connection, but the deployment server. Could someone provide me some help on how to solve this?
this is my C# code:
X509Certificate2 certificate;string certificatePassword = "myPassword";var assembly = System.Reflection.Assembly.GetExecutingAssembly();var resourceName = "MyApplication.identification_certificate.pfx";using (Stream stream = assembly.GetManifestResourceStream(resourceName)){ byte[] bytes = new byte[stream.Length]; await stream.ReadAsync(bytes, 0, bytes.Length); certificate = new X509Certificate2(bytes, certificatePassword);}HttpClientHandler handler = new HttpClientHandler();handler.ClientCertificateOptions = ClientCertificateOption.Manual;handler.SslProtocols = SslProtocols.Tls12;handler.ClientCertificates.Add(certificate);handler.ServerCertificateCustomValidationCallback = (sender, cert, chain, sslPolicyErrors) => true;using (HttpClient client = new HttpClient(handler)){ // Set the content type client.DefaultRequestHeaders.Accept.Add(new MediaTypeWithQualityHeaderValue("application/xml")); // Make the request string url = _configuration["Company"] +"/GetServicedUserInfo/"; HttpResponseMessage rsp = await client.PostAsync(url, new StringContent(xmlRequest, Encoding.UTF8, "application/xml")); //<< Exception happens here string responseContent = await rsp.Content.ReadAsStringAsync();}response.Structure = JsonConvert.SerializeObject(clientResponse);Ubuntu exception message:
InnerException = {System.Net.Sockets.SocketException (104): Connection reset by peerat System.Net.Sockets.Socket.AwaitableSocketAsyncEventArgs.CreateException(SocketError error, Boolean forAsyncThrow)at System.Net.Sockets.Socket.AwaitableSocketAsyncEventArgs.SendAsy...
If someone could provide me an insight, I would really appreciate it!thank you in advance..
Manually install the certificate,add the certificate into trusted authority,change the call from RestSharp to System.Net.Http,Use one of the PFX as DNS SSL server