在 C# 中将证书安装到 Windows 本地用户证书存储中

Install certificates in to the Windows Local user certificate store in C#(在 C# 中将证书安装到 Windows 本地用户证书存储中)

本文介绍了在 C# 中将证书安装到 Windows 本地用户证书存储中的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

我正在编写一个 Windows 服务,它需要证书存储中的多个证书才能连接到第三方 Web 服务.

I'm writing a Windows service that needs several certificates in the certificate store in order to connect to a third party web service.

在我的安装程序中,我调用了一个小型应用程序 (C#),它创建了一个用户来运行服务.

On my installer I call a small application (C#) that creates a user to run the service as.

效果很好.

我现在需要将大约 10 个证书(不要问!)安装到用户证书存储中,但找不到任何简洁的编程方式.

I now need to install about 10 certificates (don't ask!) into the users certificate store, but can't find any succinct programmatic way to do so.

有什么提示吗?还是我必须使用 COM 互操作...

Any hints? Or am I going to have to use COM interop...

推荐答案

原来你首先需要模拟用户.

Turns out you first need to impersonate the user.

使用 一个小 C# 类来模拟用户,您可以执行以下操作:

Using the very nice library described in A small C# Class for impersonating a User, you can do the following:

using (new Impersonator("username", "", "password"))
{
    try
    {
        X509Store serviceRuntimeUserCertificateStore = new X509Store(StoreName.My);
        string baseDir = AppDomain.CurrentDomain.BaseDirectory;
        string certPath = Path.Combine(baseDir, certificateFolder);

        string certificateFile = "c:\file.cert";
        string certificatePassword = "somePassword";
        string certificateLocation = certPath + "\" + certificateFile;

        InstallCertificate(certificateLocation, certificatePassword);
    }
    catch (Exception ex)
    {
        Console.WriteLine(ex);
    }
}

private static void InstallCertificate(string certificatePath, string certificatePassword)
{
    try
    {
        var serviceRuntimeUserCertificateStore = new X509Store(StoreName.My);
        serviceRuntimeUserCertificateStore.Open(OpenFlags.ReadWrite);

        X509Certificate2 cert;

        try
        {
            cert = new X509Certificate2(certificatePath, certificatePassword);
        }
        catch(Exception ex)
        {
            Console.WriteLine("Failed to load certificate " + certificatePath);
            throw new DataException("Certificate appeared to load successfully but also seems to be null.", ex);
        }

        serviceRuntimeUserCertificateStore.Add(cert);
        serviceRuntimeUserCertificateStore.Close();
    }
    catch(Exception)
    {
        Console.WriteLine("Failed to install {0}.  Check the certificate index entry and verify the certificate file exists.", certificatePath);
    }
}

请添加您自己的异常处理.如果您要添加多个证书,请保持 X509Store 保持打开状态以提高效率.

Please add your own exception handling. If you're adding multiple certificates keep the X509Store open for the duration for efficiency.

这篇关于在 C# 中将证书安装到 Windows 本地用户证书存储中的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持编程学习网!

本文标题为:在 C# 中将证书安装到 Windows 本地用户证书存储中

基础教程推荐