Home/ Questions/Q 6102673
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-23T13:38:30+00:00

When making a call to a web service running on a server using HTTPS

  • 0

When making a call to a web service running on a server using HTTPS my application throws a System.Net.WebException with the message “The underlying connection was closed: Could not establish trust relationship with remote server”. I’m not sure how to get around this issue and successfully make the call.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    After some research, I found a blog entry by Jan Tielens which explains what is going on and a workaround for my problem:

    When you browse to a HTTPS site, you probably get a dialog window asking you if you want to trust the certificate provided by the webserver. So the responsibility of accepting the certificate is handled by the user. Let’s get back to the webservice scenario, if you want to invoke a webservice located on a webserver which uses SSL and HTTPS there is a problem. When you make the call from code, there is no dialog window popping up, and asking if you trust the certificate (luckily because this would be pretty ugly in server-side scenarios); probably you’ll get following exception:

    An unhandled exception of type System.Net.WebException occurred in System.dll
    Additional information: The underlying
    connection was closed: Could not
    establish trust relationship with
    remote server.

    But there is a solution for this
    problem, you can solve this in your
    code by creating your own
    CertificatePolicy class (which
    implements the ICertificatePolicy
    interface). In this class you will
    have to write your own
    CheckValidationResult function that
    has to return true or false, like you
    would press yes or no in the dialog
    window. For development purposes I’ve
    created the following class which
    accepts all certificates, so you won’t
    get the nasty WebException anymore:

    public class TrustAllCertificatePolicy : System.Net.ICertificatePolicy
{
    public TrustAllCertificatePolicy() { }

    public bool CheckValidationResult(ServicePoint sp, X509Certificate cert, WebRequest req, int problem)
    {
        return true;
    }
}

    As you can see the
    CheckValidationResult function always
    returns true, so all certificates will
    be trusted. If you want to make this
    class a little bit more secure, you
    can add additional checks using the
    X509Certificate parameter for example.
    To use this CertificatePolicy, you’ll
    have to tell the ServicePointManager
    to use it:

    System.Net.ServicePointManager.CertificatePolicy = new TrustAllCertificatePolicy();

    This must be done (one time during the
    application life cycle) before making
    the call to your webservice.

    • 0