Re: IIS Server/Client Authentication

From: GuoZhenying (jerrin@21cn.com)
Date: 08/14/02 

From: "GuoZhenying" <jerrin@21cn.com>
Date: Thu, 15 Aug 2002 01:21:24 +0800

check whether you can browse your webpage with ssl but not requst client
certificate, if you can't do so, check your IIS setting to find out if you
have SSL port 443 set.

"Dave" <dave.lafever@morcinc.org>
??????:29b3f48e.0208140815.24ab26ba@posting.google.com...
> I'm trying to secure my asp web app. It may seem like I'm going a
> little overboard, but there are people who want it all. I have a login
> to my app, I have SSL implemented on the web site (HTTPS requests
> only) and I have a server authentication cert installed on my web
> server and assigned to my app site (this is working properly). I have
> our web server set up as a Certificate Authority so I can issue client
> authentication certs for our business partners. I can issue the client
> certs. The problem arises when I try setting up the site to require
> client certs. The browser reacts properly by displaying the client
> cert selection window, but when you select a cert and click OK, you
> get a 'Page cannot be displayed error'. If I take the requirement off
> the web site, my app runs fine. I have been all over the web searching
> for the right way to set the client cert requirement up and here's
> what I have so far:
> The common name in all the certs are assigned the same value, with a
> different organization, etc. I then set up a many to one mapping for
> the cert subject's common name sub field for that value and have them
> logged in on a distinct user account. I believe I have done everything
> correctly, but it still does not work. Any advise would be greatly
> appreciated