client-certificates

I am trying to implement client certificate authentication on IIS 8. I have deployed my configuration on a development machine and verified it working as expected there. However after setting up on the server, whenever I navigate to the site and am prompted for the client cert, I select it and immediately get the 403.16 error. The failed requests log gives the error code 2148204809 and message "A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider." I have a valid client cert and also a valid CA cert. The CA cert is installed in Trusted

I am designing a RESTful web service that needs to be accessed by users, but also other web services and applications. All of the incoming requests need to be authenticated. All communication takes place over HTTPS. User authentication is going to work based on an authentication token, acquired by POSTing the username and password (over an SSL connection) to a /session resource provided by the service. In the case of web service clients, there is no end user behind the client service. The requests are initiated by scheduled tasks, events or some other computer operations. The list of

I am trying to configure a simple web site to require client certificates on IISExpress. My configuration is according to http://www.jasonrshaver.com/?tag=/IIS+Express <site name="XXXX" id="3"> <application path="/" applicationPool="Clr4IntegratedAppPool"> <virtualDirectory path="/" physicalPath="XXXX" /> </application> <bindings> <binding protocol="http" bindingInformation="*:65360:localhost" /> <binding protocol="https" bindingInformation="*:44300:localhost" /> </bindings> </site> ... <access sslFlags="Ssl, SslNegotiateCert" /> ... <iisClientCertificateMappingAuthentication enabled="true"> <

Background: I am updating an internal application to a two-step authentication process. I want to add a client certificate authentication process (via a smart card) on top of a traditional username/password form. The application is written in C#, hosted on IIS7, and targeting Chrome and IE8. Problem: I am having issues with getting the application to prompt the user for a client certificate. I have been debugging the application with the help of Fiddler. When I have a test client certificate saved in Fiddler's user's directory (C:\Documents and Settings\USER\My Documents\Fiddler2), the

I'm using client certificates in SSL sessions to authenticate users, but I'm having a bit of a problem with cached sessions. (I have configured IIS to accept—not require—client certificates.) Normal situation: A user accesses the page that asks for the certificate. The browser launches the certificate selector, the user selects the desired certificate (and enters a PIN if needed), and everything goes forward as it should. Situation where things don't work as expected: A user accesses the page that asks for the certificate. The browser launches the certificate selector, and the user selects the