Re: require client certificates SSL

It depends. Would these users be part of your domain? If yes then the best
answer is by using Microsoft Enterprise CA server.

Here are some articles on how to set up Microsoft CA and how to deploy
certificates to users.

Best Practices for Implementing a Microsoft Windows Server2003 Public Key
Infrastructure
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/ws3pkibp.mspx

Implementing and Administering Certificate Templates in Windows Server 2003
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/ws03crtm.mspx

PKI Enhancements in Windows XP Professional and Windows Server 2003
http://www.microsoft.com/technet/prodtechnol/winxppro/plan/pkienh.mspx

Windows Server 2003 PKI Operations Guide
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/ws03pkog.mspx

Managing a Windows Server 2003 Public Key Infrastructure
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/mngpki.mspx

Advanced Certificate Enrollment and Management
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/advcert.mspx

--
Mike
Microsoft MVP - Windows Security

"Frederik Vanderhaeghe" <frederikvanderhaeghe@xxxxxxxxx> wrote in message
news:eDuCd3mcGHA.3472@xxxxxxxxxxxxxxxxxxxxxxx
And how do I have to make a client certificate?

Fré

"Miha Pihler [MVP]" <mihap-news@xxxxxxxxxxx> wrote in message
news:e3GAIDHcGHA.1264@xxxxxxxxxxxxxxxxxxxxxxx
If you enable that option the users will have to authenticate with user's
certificate. This also means that you will have to deploy client
certificate to any users that will need to access your web server.

--
Mike
Microsoft MVP - Windows Security

"Frederik Vanderhaeghe" <frederikvanderhaeghe@xxxxxxxxx> wrote in message
news:eKLs$WFcGHA.1320@xxxxxxxxxxxxxxxxxxxxxxx
Hi,

I made a certificate with SelfSSL and it is added to the site.
I see the option 'require client certificates', what does that mean? How
can
it be initiated?

Fré








.

Relevant Pages

  • Re: Configuring LDAP on Entourage 2004 OS X
    ... Microsoft CSS Online Newsgroup Support ... with Blackberry's because RIM's blackberry enterprise server works. ... Configuring LDAP on Entourage 2004 OS X ... does not work with a self signed SSL certificate OR with the SSL ...
    (microsoft.public.windows.server.sbs)
  • Re: Configuring LDAP on Entourage 2004 OS X
    ... Microsoft CSS Online Newsgroup Support ... does not work with a self signed SSL certificate OR with the SSL ... configure the System to allow OMA and "Server ActiveSync" access from the ... Configuring Exchange Server 2003 for Client Access. ...
    (microsoft.public.windows.server.sbs)
  • RE: Push Email not working
    ... Exchange server" error message when you try to access Outlook Mobile Access ... Microsoft CSS Online Newsgroup Support ... | Thread-Topic: Push Email not working ... | This could cause problems as I using the current certificate for Outlook ...
    (microsoft.public.windows.server.sbs)
  • Re: Schannel event 36870 - 0x6
    ... "Cannot manage Certificate Services. ... monitor the server to see if other error will occur. ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • RE: Public Folder in Exchange - SSL certificate server name incorr
    ... What's the certificate name? ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ... I have 2 NICs in my server, ...
    (microsoft.public.windows.server.sbs)