RE: Client based Certificates

From: IT Community (it-community.online@microsoft.com)
Date: 08/04/02 

From: it-community.online@microsoft.com (IT Community)
Date: Sun, 04 Aug 2002 15:44:15 GMT

You wrote:
| If a client requests a https session with my server, and
| lets say the client in this case is another server with
| his own server certificate, does the client send that
| certificate or are the client and server certificates
| totally different?
|
| I guess I confused in that if you as a client already have
| a server certificate why would you have to go and buy
| another certificate?

Response:
One way to look at this is that
Server certificate is bound to a domain name (or IP) and a client
certificate is to security context like a user account.

Please do not send email directly to this alias. This is an online account
name for newsgroup participation only.

This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use.

Windows 2000 SP3 released on 08/01/2002
http://microsoft.com/windows2000/
http://microsoft.com/windows2000/downloads/servicepacks/sp3/default.asp
 
Resources to secure IIS:
Q282060 Resources for Securing Internet Information Services
http://support.microsoft.com/default.aspx?scid=kb;EN-US;Q282060
 
Recently released IIS security patches:
Q319733 Cumulative Patch for Internet Information Services released
04/10/2002
http://www.microsoft.com/technet/security/bulletin/ms02-018.asp
Q321599 Heap Overrun in HTR Chunked Encoding Could Enable Web Server
Compromise released on 06/12/2002
http://www.microsoft.com/TechNet/security/bulletin/MS02-028.asp

© 2002 Microsoft Corporation. All rights reserved.

Relevant Pages

  • Re: UnauthorizedAccessException when using MSDTC
    ... dispatcher2 is the user logged on the client pc. ... Event Source: Security ... Object Server: SC Manager ... Primary Domain: BLITZ ...
    (microsoft.public.data.ado)
  • Re: Routing and Remote Access - Authentication Failure
    ... because the real client computer can tunel through it's local NAT router, ... travel the Intrenet, join the VPN and access the server, when this feature ... Their security system decided that the server was trying to steel ...
    (microsoft.public.windows.server.networking)
  • Re: WCF security advice (and clarification) needed
    ... You, the client, resolve the foo.mycompany.com hostname within your ... TCP/IP) with that ticket as the security token. ... There are two parties participating in a security scenario, the server ... HTTP supports other authentication ...
    (microsoft.public.dotnet.framework.webservices)
  • RE: Problems with security requirements in Windows WorkGroups.
    ... "A remote side security requirement was not fulfilled during authentication. ... small chat application between a client and a server ... When I try to use the TCP channel I get the error (with NO inner exception ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: VPN -- the next consumer "turnkey"?
    ... I'm not a security expert. ... "A Hamachi system is comprised of backend servers and end-node ... Server nodes track client's locations and provide ... services without providing Hamachi with a list of client IP's. ...
    (alt.internet.wireless)
Quantcast