![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 87%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 86%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHV%3C/text%3E%3C/svg%3E)
Hi @Vinod Sahu ,
My name is Harry, Support Engineer who specialize in UWP (Universal Windows Platform). Thank you for reaching out on Microsoft Q&A!
According to your question, it seems like you are encountering the Partial chain HTTPS certificate validation error because the intermediate certificate not explicitly installed.
This whole setup works in a console app.
Console apps often use the default .NET HttpClient or WebRequest stack to automatically retrieve intermediate certificate via AIA (Authority Information Access) if they are not sent by the server.
Similarly, WPF apps can also use AIA to retrieve intermediate certificate like console apps, but this behavior is not guaranteed as it depends on many factors including HTTP handler, system policy, network access, ...
Are there any configs that can be set in wpf to fetch intermediate certifcate similar to console app.
I'm very sorry but there are no WPF-specific configs or manifest settings that control how intermediate certificate are fetched. Fortunately, there are other possible solutions for this issue:
- Ensure the server sends the full chain (i.e., includes the intermediate certificate in the TLS handshake). This is the most reliable solution!
- Manually install the intermediate certificate in the Local Machine or trusted store like you mentioned in your question.
Since your title mentions UWP and I'm not sure are you working on UWP or not: Unlike WPF, UWP apps run in a sandbox and do not fetch intermediate certificate automatically. They only rely entirely on the certificate chain provided by the server. Additionally, UWP manifest capabilities do not affect certificate chain behavior.
However, the two solutions I mentioned above also apply to UWP. Please give it a try!
You can also find relate documentations here:
Authority Information Access in Windows | Microsoft Learn
Intro to certificates - UWP applications | Microsoft Learn
I hope this helps you get things back on track quickly! If you agree with our suggestion, feel free to interact with the system accordingly!