I would like to use client certificates to authenticate subscribers in my WCF service (hosted in IIS).
I don’t want to use any of the built-in solutions (client certificate mapping or IIS Client certificate mapping) because they require additional administrative overhead (local user accounts or AD accounts). That is: adding another account requires a request for a change in the IT department, and then waiting for three weeks.
Is it possible to configure IIS / WCF to accept client certificates and map them to user accounts defined by something like ASP.NET MembershipProvider?
I want to use one of the HTTP bindings. That is: basicHttpBinding, wsHttpBinding or webHttpBinding.
source
share