c# - “System.Security.Cryptography.CryptographicException: Keyset does not exist” when reading private key from remote machine -

-

i trying decrypt data using certificate private key. works fine when certificate installed on local machine (i using self signed certificate testing , have private key certificate) when try access private key remote machine using same code, "keyset not exist" exception.

i using console application testing, , have made sure id have read permissions on private key on remote server. here sample code using:

var store = new x509store(@"\\server1\my", storelocation.localmachine); store.open(openflags.readonly); var result = store.certificates.find(x509findtype.findbysubjectname, "server1.test.com", false); var certificate = result[0]; store.close();  //this succeeds both local , remote server var rsapublic = (rsacryptoserviceprovider)certificate.publickey.key;  //this succeeds local, fails remote server var rsaprivate = (rsacryptoserviceprovider)certificate.privatekey;

here exception call stack

unhandled exception: system.security.cryptography.cryptographicexception: keyset not exist     @ system.security.cryptography.utils.createprovhandle(cspparameters parameters, boolean randomkeycontainer)    @ system.security.cryptography.utils.getkeypairhelper(cspalgorithmtype keytype, cspparameters parameters, boolean randomkeycontainer, int32 dwkeysize, safeprovhandle& safeprovhandle, safekeyhandle& safekeyhandle)    @ system.security.cryptography.rsacryptoserviceprovider.getkeypair()    @ system.security.cryptography.rsacryptoserviceprovider..ctor(int32 dwkeysize, cspparameters parameters, boolean usedefaultkeysize)    @ system.security.cryptography.x509certificates.x509certificate2.get_privatekey()    @ rsapoc.program.main(string[] args)

i have found similar unanswered question on so, using un-managed code, whereas using managed api, both seems having same root cause.

we contacted microsoft support solution , here response got:

  1. why private key not available when code executed on server2?
    a: design. certificate stores different private key storage. while can enumerate certificates remotely, private keys cannot accessed remotely.

  2. can issue fixed giving user privileges or changes in group policy settings? a: no. doesn’t involve privileges or permission file.

  3. if not both of above can suggest suitable solution?
    a: 1. can install certificate on machines each 1 has copy of private key.
    2. can create roaming domain user. roaming certificate situation private keys can roamed between machines. roaming profiles located on server, when user logs on, temporary copy of profile (including private key) created.
    3. use third party cryptographic provider. there cryptographic providers allow remote private key access , cryptographic operations.


Comments

Post a Comment

Popular posts from this blog

sql - VB.NET Operand type clash: date is incompatible with int error -

-
i trying display records table named staffpresentee database using clause... i using visual studio 2010... the table design follows- .......fieldname..................datatype........allownull 1......staff_id (fk).............numeric(18,0)......yes 2.......date........................date.............no 3......present.....................char(1)..........yes note type of 2nd field date , not datetime... i want display records table have today's date int 'date' field... current query is- cmd = new sqlclient.sqlcommand("select * staffpresentee date=" & date.now.date, cn) dr = cmd.executereader for dr = cmd.executereader error "operand type clash: date incompatible int" i tried select * staffpresentee query without clause runs correctly. try putting date value in sigle quotes maybe. cmd = new sqlclient.sqlcommand("select * staffpresentee date='" & _
Read more

SVG stroke-linecap doesn't work for circles in Firefox? -

-
i've got problem svg stroke-linecap attribute. i've got circular progress bar in angularjs , set outer circle (blue one) have rounded "ends". @ fiddle . <svg ... height="130" width="130"> <!-- ngif: background --> <circle ... ng-if="background" fill="#fff" class="ng-scope" stroke-width="13" stroke="#cc3399" r="57.5" cy="65" cx="65" stroke-linecap="round" /> <!-- end ngif: background --> <circle ... fill="none" stroke-dashoffset="36.12831551628261" stroke-dasharray="361.28315516282623" stroke-width="13" stroke="#432db3" stroke-linecap="round" r="57.5" cy="65" cx="65" transform="rotate(-89.9, 65, 65)" /> </svg> how can that?
Read more

python - TypeError: Scalar value for argument 'color' is not numeric in openCV -

-
here code im = cv2.imread('luffy.jpg') gray = cv2.cvtcolor(im,cv2.color_bgr2gray) ret,thresh = cv2.threshold(gray,127,255,0) contours,h = cv2.findcontours(thresh,cv2.retr_tree,cv2.chain_approx_simple) cnt in contours: moment = cv2.moments(cnt) c_y = moment['m10']/(moment['m00']+0.01) c_x = moment['m01']/(moment['m00']+0.01) centroid_color = im[c_x,c_y] centroid_color = np.array((centroid_color[0],centroid_color[1],centroid_color[2])) print type(centroid_color) cv2.fillpoly(im,cnt,centroid_color) i getting error on last line try , pass centroid_color color argument. <type 'numpy.ndarray'> , have been able pass data type cv2.fillpoly color in other instances, not sure why having problem here. fillpoly() expects iterable, i.e. put cnt in brackets. believe duplicate of https://stackoverflow.com/a/17582850/5818240 . moreover, centroid color variable contains strings. need convert them i
Read more