403 error...

[Arun]

Hi,
I am trying to make a request from a web service to an external
site which uses https. I have a certificate (.p12 format) from them. I
have performed the following steps:

1. Exported the certificate to DER encoded .CER file.
2. Imported the certificate into the Trusted Root CA of the local
computer
3. Used X509Certificate.CreateFromCertFile() to create a
X509Certificate object from the .CER file.
4. Added this certificate to the HttpWebRequest using
httpRequest.ClientCertificates.Add(cert);
5. When I try to retrieve the response using
httpRequest.GetResponse(), I get the following error:
"The remote server returned an error: (403) Forbidden."

Any idea what this means and how to get past it? I have a feeling that
the certificate is not being sent to the external site.
Any help will be highly appreciated.

Thanks,
Arun

[Joe Kaplan \(MVP - ADSI\)]

Does the certificate in the store say it has a private key associated with
it? CAPI needs to have the private key available for SSL client
authentication, so you need to make sure the private key is imported into
the store when you import the certificate.

Joe K.
"Arun" <aknss@hotmail.com> wrote in message
news:93980cbb.0406150614.458e27d9@posting.google.c om...

> Hi,
> I am trying to make a request from a web service to an external
> site which uses https. I have a certificate (.p12 format) from them. I
> have performed the following steps:
>
> 1. Exported the certificate to DER encoded .CER file.
> 2. Imported the certificate into the Trusted Root CA of the local
> computer
> 3. Used X509Certificate.CreateFromCertFile() to create a
> X509Certificate object from the .CER file.
> 4. Added this certificate to the HttpWebRequest using
> httpRequest.ClientCertificates.Add(cert);
> 5. When I try to retrieve the response using
> httpRequest.GetResponse(), I get the following error:
> "The remote server returned an error: (403) Forbidden."
>
> Any idea what this means and how to get past it? I have a feeling that
> the certificate is not being sent to the external site.
> Any help will be highly appreciated.
>
> Thanks,
> Arun

[Chun]

Hi Arun,

I having same error as you and i did all the steps you did. Can you
tell me how to fix it?

Thanks,

Chun

"Joe Kaplan \(MVP - ADSI\)" <joseph.e.kaplan@removethis.accenture.com> wrote in message news:<u9TGzxvUEHA.1472@TK2MSFTNGP09.phx.gbl>...

> Does the certificate in the store say it has a private key associated with
> it? CAPI needs to have the private key available for SSL client
> authentication, so you need to make sure the private key is imported into
> the store when you import the certificate.
>
> Joe K.
> "Arun" <aknss@hotmail.com> wrote in message
> news:93980cbb.0406150614.458e27d9@posting.google.c om...

> > Hi,
> > I am trying to make a request from a web service to an external
> > site which uses https. I have a certificate (.p12 format) from them. I
> > have performed the following steps:
> >
> > 1. Exported the certificate to DER encoded .CER file.
> > 2. Imported the certificate into the Trusted Root CA of the local
> > computer
> > 3. Used X509Certificate.CreateFromCertFile() to create a
> > X509Certificate object from the .CER file.
> > 4. Added this certificate to the HttpWebRequest using
> > httpRequest.ClientCertificates.Add(cert);
> > 5. When I try to retrieve the response using
> > httpRequest.GetResponse(), I get the following error:
> > "The remote server returned an error: (403) Forbidden."
> >
> > Any idea what this means and how to get past it? I have a feeling that
> > the certificate is not being sent to the external site.
> > Any help will be highly appreciated.
> >
> > Thanks,
> > Arun