In my IIS Manager for a certain webpage I have the this setup:
:
Client provided the certificate. Can you please explain for each option. which option(Ignore, Accept, Require) I need to use.
Thanks & Regards,
Vasu
Technology Tips and News
In my IIS Manager for a certain webpage I have the this setup:
:
Client provided the certificate. Can you please explain for each option. which option(Ignore, Accept, Require) I need to use.
Thanks & Regards,
Vasu
Hi Vashu
If you want all clients to verify their identity, you must specify that client certificates are required. If some clients can access content without first verifying their identity, you must specify that client certificates are accepted.
Refer TechNet article here https://technet.microsoft.com/en-us/library/cc753983%28v=ws.10%29.aspx
Thanks
Hi Vasu,
Require: when we use client certificate validation where we validate the client based on the certificate it presents to the server.
Ignore: it is just opposite to first one where authentication is not based on client certificate.
Accept: it is kind of optional means , it will take a certificate if it's presented, but will also continue with connections where the client doesn't present one.
For more detail pls check this link: https://support.microsoft.com/en-gb/kb/907274
Clients would be validated based on these three options. If set to Require then the client is validated based on cert and we should also enable "Require SSL" checkbox.
Cheers