static X509Certificate2 Ldap(CertificateSubject certSubject)
{
LdapSettings settings = ConfigurationHandler.GetConfigurationSection <LdapSettings>();
// Print out info
Console.WriteLine();
Console.WriteLine("2. Certificate download");
Console.ForegroundColor = ConsoleColor.Gray;
Console.WriteLine(" Using host");
Console.WriteLine(" " + settings.Host);
Console.ForegroundColor = ConsoleColor.White;
Console.WriteLine();
// Create the LDAP client
LdapLookupFactory ldapClientFactory = new LdapLookupFactory();
ICertificateLookup ldapClient = ldapClientFactory.CreateLdapLookupClient();
// Lookup the certificate using LDAP
X509Certificate2 certificate = ldapClient.GetCertificate(certSubject);
Console.WriteLine(" Downloaded certificate with LDAP:");
Console.ForegroundColor = ConsoleColor.Yellow;
Console.WriteLine(" " + certificate.Subject);
Console.ForegroundColor = ConsoleColor.White;
return(certificate);
}
protected OcesX509Certificate GetEndpointCertificateFromLdap(CertificateSubject certificateSubject)
{
LdapLookupFactory ldapClientFactory = new LdapLookupFactory();
ICertificateLookup ldapClient = ldapClientFactory.CreateLdapLookupClient();
X509Certificate2 endpointCertificate = ldapClient.GetCertificate(certificateSubject);
OcesX509Certificate endpointOcesCertificate = new OcesX509Certificate(endpointCertificate);
return(endpointOcesCertificate);
}
public void Lookup_ReturnsCertificateLookupObject()
{
Mock <IKuduConfiguration> configMock = new Mock <IKuduConfiguration>();
configMock.Setup(mock => mock.CertificateStores).Returns(new[] { new CertificateStoreConfiguration(StoreName.My) });
ICertificateSearcher searcher = new CertificateSearcher(configMock.Object, null);
ICertificateLookup result = searcher.Lookup("FindMe");
Assert.IsType <CertificateLookup>(result);
}
private X509Certificate2 Ldap(CertificateSubject certSubject)
{
// Create the LDAP client
LdapLookupFactory ldapClientFactory = new LdapLookupFactory();
ICertificateLookup ldapClient = ldapClientFactory.CreateLdapLookupClient();
// Lookup the certificate using LDAP
X509Certificate2 certificate = ldapClient.GetCertificate(certSubject);
// Print out info
Console.Write(" 2. Downloaded certificate with LDAP\n ");
Console.ForegroundColor = ConsoleColor.Yellow;
Console.WriteLine(certificate.Subject);
Console.ForegroundColor = ConsoleColor.White;
return(certificate);
}
private void TextCertificate()
{
string subject = string.Empty;
/* Production configuration */
// specifie the subject to test
// Production certificates valid
// subject = "CN = NemHandel test service (funktionscertifikat) + SERIALNUMBER = CVR:26769388-FID:1200406941690, O = IT- og Telestyrelsen // CVR:26769388, C = DK";
//subject = "SERIALNUMBER=CVR:30808460-FID:1320135775022 + CN=TEST FOCES1 (funktionscertifikat), O=DANID A/S // CVR:30808460, C=DK";
// Production certificates not valid
/* Test configuration */
//
// Test certificates valid
// subject = "CN = Testendpoint (funktionscertifikat) + SERIALNUMBER = CVR:26769388-FID:1208430425605, O = IT- og Telestyrelsen // CVR:26769388, C = DK";
//subject = "CN = Testendpoint (funktionscertifikat) + SERIALNUMBER = CVR:26769388-FID:1208430425605, O = IT- og Telestyrelsen // CVR:26769388, C = DK";
// Test certificates not valid
//subject = "CN = TU GENEREL FOCES gyldig (funktionscertifikat) + SERIALNUMBER = CVR:30808460-FID:94731315, O = Danid A/S // CVR:30808460, C = DK";
// subject = "CN=Navision (funktionscertifikat) + OID.2.5.4.5=CVR:23267519-FID:1257424251148, O=TIETGENSKOLEN // CVR:23267519, C=DK";
//subject = "CN = TEST FOCES1 (funktionscertifikat) + SERIALNUMBER = CVR:30808460-FID:1320135775022, O = DANID A/S // CVR:30808460, C = DK";
// not valid any more
//subject = "CN=TU GENEREL FOCES gyldig (funktionscertifikat) + SERIALNUMBER = CVR:30808460-FID:94731315, O = Danid A/S // CVR:30808460, C = DK";
// subject = "CN=TU GENEREL FOCES gyldig (funktionscertifikat) + SERIALNUMBER=CVR:30808460-FID:94731315, O=Danid A/S // CVR:30808460, C=DK";
// subject = "CN=FOCES1 (funktionscertifikat) + SERIALNUMBER=CVR:30808460-FID:1255692730737, O=DANID A/S // CVR:30808460, C=DK";
// subject = "CN=TU GENEREL MOCES gyldig + SERIALNUMBER=CVR:30808460-RID:45490598, O=Danid A/S // CVR:30808460, C=DK";
subject = "CN = mySupply NemHandel - Foces2 (funktionscertifikat) + SERIALNUMBER = CVR:32433030-FID:27705483, O = mySupply NemHandel // CVR:32433030, C = DK";
//subject = "SERIALNUMBER=CVR:34051178-FID:56940413 + CN=NemLog-in ADFS Test (funktionscertifikat), O=Digitaliseringsstyrelsen // CVR:34051178, C=DK";
// Now - retrive the certificate in LDAP, if the certificate is pressen...
CertificateSubject certificateSubject = new CertificateSubject(subject);
LdapLookupFactory ldapClientFactory = new LdapLookupFactory();
ICertificateLookup ldapClient = ldapClientFactory.CreateLdapLookupClient();
// Lookup the certificate using LDAP
X509Certificate2 certificate = ldapClient.GetCertificate(certificateSubject);
if (certificate != null)
{
Console.Write("Certificate whith subject ");
Console.ForegroundColor = ConsoleColor.Yellow;
Console.Write(subject);
Console.ForegroundColor = ConsoleColor.White;
Console.WriteLine(" found in LDAP.");
// Validate that the certificate is valid in OCSP
RevocationLookupFactory revocationLookupFactory = new RevocationLookupFactory();
IRevocationLookup revocationClient = revocationLookupFactory.CreateRevocationLookupClient();
// Check the validity status of the certificate using OCSP
RevocationResponse revocationResponse = revocationClient.CheckCertificate(certificate);
if (revocationResponse.IsValid)
{
Console.ForegroundColor = ConsoleColor.Green;
Console.Write("Certificate valid in OCSP/CRL");
}
else
{
Console.ForegroundColor = ConsoleColor.Red;
Console.Write("Certificate not valid in OCSP/CRL");
}
}
else
{
Console.Write("Certificate whith subject ");
Console.ForegroundColor = ConsoleColor.Red;
Console.Write(subject);
Console.ForegroundColor = ConsoleColor.White;
Console.WriteLine(" NOT found in LDAP.");
}
Console.ForegroundColor = ConsoleColor.White;
Console.WriteLine();
Console.WriteLine("Press any key to exit.");
Console.ReadLine();
}
