02/22/2017
Is there any case where a server’s endpoints, as enumerated via the GetEndpoints service, would have different serverCertificates between EndpointDescriptions?
The serverCertificate is the server’s application instance certificate, and is described for EndpointDescription as “The Application Instance Certificate issued to the Server”; here, as elsewhere, this seems to be singular. Yet, the certificate is returned per-endpoint, which seems to imply that there’s a per-endpoint case somewhere, somehow.
What am I overlooking?
05/30/2017
Servers frequently have multiple certificates assigned to them and each EndpointDescription can have a different Certificate (i.e. different trust lists for internal vs external NICs or different key algorithms ECC/RSA).
Clients need to use the Certificate associated EndpointDescription they choose.
1 Guest(s)