My blog has moved and can now be found at

No action is needed on your part if you are already subscribed to this blog via e-mail or its syndication feed.

Sunday, September 19, 2004
« SHA-256 support in HashPasswordForStorin... | Main | Hidden field tampering / Viewstate »

I recently saw a BizTalk demo that utilized the WSE adapter to authenticate against a web service using an X.509 certificate.  From what I saw this was purely a machine to machine authentication. 

The question I have is "Is it possible to dynamically pass my credentials i.e. X.509 cert, into a BizTalk orchestration such that such that the authentication against an external web service is done using MY credentials?"

I *think* what I am looking for (I am not a BizTalk guru so may be getting my terminology mixed up) is for an Orchestration to run under my security context so that everything that is done as part of that orchestration is done using my credentials... Is it possible?  Scott? Anyone?

Tags:: Security
9/19/2004 10:07 PM Eastern Daylight Time  |  Comments [1]  |  Disclaimer  |  Permalink   
Sunday, May 8, 2005 12:06:43 AM (Eastern Daylight Time, UTC-04:00)
Create a host instance that runs under a specific set of user credentials (whatever you want) and supports host authentication (a setting on the host when you create it). That way it will preserve the credentials of the caller. Then take a look at the party management function which can do a look-up on the basis of a set of credentials. Not sure if it solves the WSE problem but that's how you would create one orchestration that services 100's of trading partners each with their own authentication.
Scott (MSFT)
Comments are closed.