Re: problem with client certificates

From: GibMaster (gibmaster@gibs.org)
Date: 11/04/02 

From: "GibMaster" <gibmaster@gibs.org>
Date: Mon, 4 Nov 2002 15:00:01 -0500

When you request the client cert, go under the advanced options and choose
"mark keys as exportable". You can then use IE to backup (export) your
private key. Once you get it installed. Then you take that pfx file and
install it on another machine. Bingo, you're in.

Careful... the private key is the sensitive part of the encryption. Don't
let it fall into the wrong hands... Muuuhahahaha!!!

"RP" <rp@nospam.com> wrote in message news:#LeJ2HDhCHA.1960@tkmsftngp08...
> if let the user install the certificate through the browser, then it seems
> to be working fine. but if i email the certificate to the user and he
double
> clicks it and installs it in his Personal store, then it does not show up
in
> IE under Content--> Certifcates! why is that? I ideally would like to
email
> the users their certificates mainly because the CA server would not be
> available online.
>
> TIA,
> Param
>
> "RP" <rp@nospam.com> wrote in message news:ejZ$6jChCHA.1756@tkmsftngp12...
> > hi all, have a iis5 website that has been setup to require client
> > certificates. the stand alone root ca is also installed on the same
> machine
> > as iis. now if i browse to the website from local machine everything
works
> > fine. i am having a problem getting other users to connect with their
> client
> > certs. keep getting 403.7 error. I have installed the CA root
certificate
> > into their trusted root certificates store and then installed their
client
> > certificate under their personal store. on XP machines, I directly get
the
> > 403.7 error and on windows 2000 machines i get a popup with no client
> > certificates shown.
> > what could i be doing wrong? after receiving their requests for a cert
via
> > the web interface, i went into the MMC console approved the request,
then
> > saved out the cert to a file and emailed it to them.
> >
> >
> >
>
>

Relevant Pages

  • Re: Radius Server
    ... > so I'm guessing the client needs the Server Certificate, ... > export it from the server and import it to the client. ... >> But if you deployed EAP-TLS, you need a server cert and a client ...
    (microsoft.public.windows.server.networking)
  • Re: OWA Form Resetting
    ... Depends on the client browsers... ... The reason why you are getting alerts regarding the certificate being ... both the ISA server computer as well as the external ... I can view the cert and the certs ...
    (microsoft.public.isa)
  • Re: L2TP/IPSec from XP client to Windows 2003 Server
    ... ie no valid cert found on client - contacted Microsoft ... Windows Server 2003 Certificate Authority running ... The next step is to install Certificate Services on the Windows Server ... From Networks Connections on the client, ...
    (microsoft.public.security)
  • Re: Certificate Services and Synching with Exchange
    ... Yes, installing the cert and self-signing worked, but only because ... Yes, I had to manually export and install it, but it was trivially ... You export the cert from the MMC to a .cer file. ... Will installing Certificate Services and self-signing a certificate ...
    (microsoft.public.pocketpc.activesync)
  • Re: Terminal Services over a VPN
    ... Create a certificate request and submit it to godaddy in order to obtain a public cert. ... You can use the wizard in IIS Manager for this by creating a new website that matches the above name (on your TS server), right-click and choose properties, directory security tab, server certificate button. ... After the install you can stop or delete the website created above since you don't need it for anything. ...
    (microsoft.public.windows.terminal_services)