Scenario:
- The client calls WebService A on the local network. WebService A runs under the application pool with the identity "Network Service".
- WebService A is doing some work, getting ready to call WebService B.
- WebService B requires a client certificate (* .cer) and SSL.
- WebService A is located on a dedicated Windows 2003 server.
- Everything works in the Dev environment, as it should (but a developer with administrator rights is always registered locally (not surprising!).
- Certificates are stored on disk
C:\MyCertificates\ - The certificate is applied at runtime in Dev using this snippet:
myWebService.ClientCertificates.Add(new X509Certificate.CreateFromCertFile(certPath));
Problem:
WebService A calls WebService B, and the exception returned is:
Request Error with HTTP Status 403: Forbidden
, WebService B.
, . , , -. (, , - IIS AppPool).
: , , , ?