Re: How do we get the private key to do digital signature?
- From: "antonyliu2002@xxxxxxxxx" <antonyliu2002@xxxxxxxxx>
- Date: 9 Apr 2007 18:44:22 -0700
On Apr 9, 8:26 pm, "Mitch Gallant" <jensig...@xxxxxxxxxxxxxxxx> wrote:
Yes, but read the default settings on SetClientCertificate in the docs
there.
If IE finds more than one valid cert (for SSL authentication purposes) it
pops a dialog.
You will need to pop a dialog on your client, or else code searching his MY
certs store for one with the necessary client-authenticadtion attributes and
if more than one, pop a vb dialog on them.
You have some more coding to do to achieve what IE does.
- Mitch-
The popup dialog shown at the following URL
http://farm1.static.flickr.com/167/442962234_ab4a756b8c_o.png
is exactly on the client side with IE. So, I think you are suggesting
that I do
(1) initiate the https request from vbs like in the example you showed
as follows:
' Open an HTTP connection.
HttpReq.Open "GET", "https://somesecureurl/";, False
This will presumably prevent IE from popping up the dialog box.
(2) then in my vbs code, I search the key store, and find the
corresponding client certificate and submit it. Well, since the user
will enter his email on my login page, and the certificate contains
user email address, I should be able to locate client cert given this
info.
In other words, your suggestion is that we select the client cert
*for* the end user from the given subject info (such as the email
address), and the end user is not given the option to select his
cert. This way, we don't have to worry about polling the IE popup
dialog box, which you say is impossible.
Am I getting your idea?
.
- Follow-Ups:
- Re: How do we get the private key to do digital signature?
- From: Mitch Gallant
- Re: How do we get the private key to do digital signature?
- References:
- Re: How do we get the private key to do digital signature?
- From: antonyliu2002@xxxxxxxxx
- Re: How do we get the private key to do digital signature?
- From: Kalle Olavi Niemitalo
- Re: How do we get the private key to do digital signature?
- From: antonyliu2002@xxxxxxxxx
- Re: How do we get the private key to do digital signature?
- From: Mitch Gallant
- Re: How do we get the private key to do digital signature?
- From: antonyliu2002@xxxxxxxxx
- Re: How do we get the private key to do digital signature?
- From: Mitch Gallant
- Re: How do we get the private key to do digital signature?
- From: antonyliu2002@xxxxxxxxx
- Re: How do we get the private key to do digital signature?
- From: Mitch Gallant
- Re: How do we get the private key to do digital signature?
- From: antonyliu2002@xxxxxxxxx
- Re: How do we get the private key to do digital signature?
- From: antonyliu2002@xxxxxxxxx
- Re: How do we get the private key to do digital signature?
- From: Mitch Gallant
- Re: How do we get the private key to do digital signature?
- From: antonyliu2002@xxxxxxxxx
- Re: How do we get the private key to do digital signature?
- From: Mitch Gallant
- Re: How do we get the private key to do digital signature?
- From: antonyliu2002@xxxxxxxxx
- Re: How do we get the private key to do digital signature?
- From: Mitch Gallant
- Re: How do we get the private key to do digital signature?
- Prev by Date: Re: How do we get the private key to do digital signature?
- Next by Date: Re: How do we get the private key to do digital signature?
- Previous by thread: Re: How do we get the private key to do digital signature?
- Next by thread: Re: How do we get the private key to do digital signature?
- Index(es):
Relevant Pages
|
