I am trying to verify a certificate using X509Certificate2.Verify () (and / or the C ++ / CAPI equivalent).
The problem is that when Internet Explorer connection parameters indicate a proxy server for which authentication is required, OCSP verification will always fail (the OS cannot verify that the certificate has not been revoked because it does not have credentials to transmit through the proxy. )
Microsoft has a similar KB, but does not actually offer any fixes.
http://support.microsoft.com/kb/915787
Even if I have credentials (username and password), I cannot pass them to the cryptography API (in .NET or native).
Is there a solution that allows checking certificates even if there is a default proxy server that provides authentication?
Thank!
Edit:
Some suggestions from Microsoft that this is simply not possible:
"CryptoAPI also cannot be authenticated for a proxy server or for caching servers that require basic authentication to access the HTTP URL that refers to the CRL distribution point."
http://technet.microsoft.com/en-us/library/bb457027.aspx#EFAA
" -, Windows , . - , Winhttp.dll ."
http://support.microsoft.com/kb/887196