如何从 .NET 对 X.509 证书的私钥文件设置读取权限 [英] How to set read permission on the private key file of X.509 certificate from .NET

问题描述

这是将 pfx 添加到 Cert 存储区的代码.

Here is the code to add a pfx to the Cert store.

X509Store store = new X509Store( StoreName.My, StoreLocation.LocalMachine );
store.Open( OpenFlags.ReadWrite );
X509Certificate2 cert = new X509Certificate2( "test.pfx", "password" );
store.Add( cert );
store.Close();

但是，我找不到设置 NetworkService 访问私钥的权限的方法.

However, I couldn't find a way to set permission for NetworkService to access the private key.

谁能解释一下?提前致谢.

Can anyone shed some light? Thanks in advance.

推荐答案

要以编程方式完成，你必须做三件事:

To do it programmatically, you have to do three things:

1. 获取私钥文件夹的路径.

1. Get the path of the private key folder.

获取该文件夹中私钥的文件名.

Get the file name of the private key within that folder.

为该文件添加权限.

有关示例，请参阅这篇文章完成所有三个操作的代码(具体查看AddAccessToCertificate"方法).

See this post for some example code that does all three (specifically look at the "AddAccessToCertificate" method).

这篇关于如何从 .NET 对 X.509 证书的私钥文件设置读取权限的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！