Re: IIS6 / W2K3 / Client Certificate - Urgent help required!

• Previous message: Wei-Dong XU [MSFT]: "RE: IIS6 / W2K3 / Client Certificate - Urgent help required!"
• In reply to: Marc Jennings: "IIS6 / W2K3 / Client Certificate - Urgent help required!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 28 Jun 2005 21:22:32 -0700

SelfSSL should set up your IIS machine to handle client cert authentication.
http://www.microsoft.com/downloads/details.aspx?FamilyID=56fc92ee-a71a-4c73-b628-ade629c89499&DisplayLang=en

To get rid of the security popup of the browser, you will need to sign with
a certificate that the client trusts. This is accomplished by either
purchasing a SSL Certificate (verisign, thawte, et al have their
certificates in the client's trusted store), or you somehow the server's
cert into the client's trusted store.

Obviously, for testing purposes, SelfSSL + manual registration of the cert
into the client's trusted store is the cheap way to go. For real deployment,
real signed certificate is the easy way to go (unless you control all the
client browsers and can deploy your self-signed cert into their trusted
store).

-- 
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"Marc Jennings" <MarcJennings@community.nospam> wrote in message
news:01i2c1hjhgcmo2roktgn97hdphodgefhjo@4ax.com...
Hi there,
Can anyone give me a quick tutorial on creating a self-signed client
certificate in win2K3 / IIS6, please?  I have just been handed a
project with a dealine of uesterday that requires client certificate
authentication.  Any help is greatfully accepted.
TIA
Marc.

• Previous message: Wei-Dong XU [MSFT]: "RE: IIS6 / W2K3 / Client Certificate - Urgent help required!"
• In reply to: Marc Jennings: "IIS6 / W2K3 / Client Certificate - Urgent help required!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Radius Server ... > so I'm guessing the client needs the Server Certificate, ... > export it from the server and import it to the client. ... >> But if you deployed EAP-TLS, you need a server cert and a client ... (microsoft.public.windows.server.networking) Re: OWA Form Resetting ... Depends on the client browsers... ... The reason why you are getting alerts regarding the certificate being ... both the ISA server computer as well as the external ... I can view the cert and the certs ... (microsoft.public.isa) Re: Crypto iffpar ... I reconfigured my test client to be a "strict client" (to use your ... > and 0x1 (meaning trusted cert) on server cryptostats. ... | The certificate signature has been verified. ... (comp.protocols.time.ntp) Re: Somewhat Urgent - Exchange 2007 Configuration Question ... public cert> ... to resolved the internal / external certificate issue. ... for "Exchange" so Outlook clients no longer get the certificate warning. ... The client computers having this issue are located across a security ... (microsoft.public.exchange.admin) Re: Wireless WPA on SBS not authenticating ... Automatic certificate enrollment for local system failed to contact the ... Guess that means im not gettin anything so it must be my client or router. ... you could try updating the NIC drivers on the wireless ... I can see on a client machine that the cert is there and it is the ... (microsoft.public.windows.server.sbs)