Re: Server certificate instance refuses

From: David Cross [MS] (dcross_at_online.microsoft.com)
Date: 06/27/03 

Date: Fri, 27 Jun 2003 05:14:08 -0700

have you configured the IIS server mapping? 

-- 
David B. Cross [MS]
--
This posting is provided "AS IS" with no warranties, and confers no rights.
http://support.microsoft.com
"Arek Lichwa" <arek_lichwa@yahoo.com> wrote in message
news:uWy9VZJPDHA.3236@TK2MSFTNGP10.phx.gbl...
> i've resolved the problem with the warning,
> using mmc snapin for certificate moved the apropriate cert to trusted root
> certification authorities
> but now nothing happens in event log and server still showing http403.16
for
> client, the client cert (issued by thawte for post.polcard.com.pl with
valid
> to : 2003-07-05) is also in root ca repository and the path is valid, i
mean
> certificate panel says the cert path is ok,
> whats can be wrong with my server settings?
>
> "krish shenoy[MS]" <kshenoy@online.microsoft.com> wrote in message
> news:uLj0hcAPDHA.3700@tk2msftngp13.phx.gbl...
> > 1) The Server certificate should chain up to a trusted root on the
client
> > machine
> > 2) The client certificate should chain up to a trusted root on the
server
> > machine
> > The easiest way to verify this is to export the cert to a file and copy
it
> > to the other machine and see if it chains correctly
> > If you have added some trusted roots for the current user then make sure
> > that the same roots are also added to the local machine trusted root
store
> > since SSL will use the local machine context and not the current user
> > context
> >
> >
> > --
> > This posting is provided "AS IS" with no warranties and confers no
rights.
> > Use of any included samples is subject to the terms specified at
> > http://www.microsoft.com/info/copyright.htm"
> > "Arek Lichwa" <arek_lichwa@yahoo.com> wrote in message
> > news:ex5w6h#ODHA.1072@TK2MSFTNGP10.phx.gbl...
> > > Hello!
> > > I got a warning message in eventlog (win2000 server)
> > > "the server certificate for instance '72' does not chain up to a
trusted
> > > root certificate"
> > > It happens when client application with own certificate trying to
> connect
> > to
> > > aspx application (the aspx script enforces SSL 128bit encyption and
> > requires
> > > client certificate)  on server 72 instance and web server refuses
> > connection
> > > with http403 error (exactly refuses the client certificate)
> > >
> > > I'd appriciate for any help or any pointings
> > > with kind regards Arek
> > >
> > >
> >
> >
>
>

Relevant Pages

  • Re: Server certificate instance refuses
    ... The Server certificate should chain up to a trusted root on the client ... The client certificate should chain up to a trusted root on the server ...
    (microsoft.public.win2000.security)
  • Re: LDP client authentication fails
    ... When you say you have copied the personal certificate of the server into the ... Trusted Root Certificates Authority, I am unclear as to what you mean. ... I am using LDP.exe as a client to communicate with LDAP server. ...
    (microsoft.public.windows.server.active_directory)
  • Certificate Trust List
    ... EventID 36885 is registered when a user presents a client certificate. ... Patch the server from Windows Update including refreshing trusted root ... Install a client certificate issued by the CA from step 4 to IE6. ... On the server the following event is recorded in the System Log: ...
    (microsoft.public.inetserver.iis.security)
  • Re: asp.net and ldap
    ... The application's ldap requery code works well on your development ... however you're encoutering "the server is not operational" error ... If so, based on my experience, this should be a certificate related ... > Computer Certificate Store's Trusted root CA to see whether you can find ...
    (microsoft.public.dotnet.framework.aspnet)
  • RPC over HTTP, Microsoft solution
    ... Exchange Server 2003 RPC over HTTP Deployment Scenarios ... Place a check in the box next to 'Certificate Services' and click 'Yes' ...
    (microsoft.public.exchange.setup)