Re: creating multiple client certificates
- From: David Wang <w3.4you@xxxxxxxxx>
- Date: Mon, 14 Jul 2008 12:00:00 -0700 (PDT)
On Jul 14, 6:21 am, Alastair <Alast...@xxxxxxxxxxxxxxxxxxxxxxxxx>
wrote:
Hi David, Thank you for taking the time to reply.
Simplistically I thought you produce a certificate on the iis server, this
can then (or from CA) produce a client cert that can then be exported and
copied/installed on the clients. When the client (with cert installed) tries
to connect via https the server checks if the client has the cert, if so it
connects, if not the connection is refused. Thus stopping the users from
getting onto the application from just 'any' pc - just the ones with a client
certificate pre-installed by us.
Am I able to generate and copy just one client certificate for this purpose?
Thanks again,
Alastair.
A certificate can be created anywhere by anyone. The question is
whether the users of the certificate trust the authenticity of the
certificate.
The issue is that there is no server-side feature which "checks if the
client has the cert" to authorize/deny the user's connection attempt,
so your usage scenario will require custom code.
//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//
.
- References:
- Re: creating multiple client certificates
- From: David Wang
- Re: creating multiple client certificates
- From: David Wang
- Re: creating multiple client certificates
- Prev by Date: Re: creating multiple client certificates
- Next by Date: Re: OWA port443 and cert's
- Previous by thread: Re: creating multiple client certificates
- Next by thread: Re: creating multiple client certificates
- Index(es):
Relevant Pages
|
