Is it possible to request client certificates issued only by a particular CA (Certificate Authority)? The site is using IIS 7.5, and we have client certificates assigned to users following this article - http://ondrej.wordpress.com/2010/01/24/iis-7-and-client-certificates/. CTL does not seem to have any effect on this because the server will always advertise all acceptable CA names, regardless if they are in the CTL or not. http://blogs.msdn.com/b/saurabh_singh/archive/2007/12/07/certificate-trust-list-not-being-honored-by-iis-5-0-6-0-7-0.aspx
How can I request a client certificate only from a particular CA
719 Views Asked by rgeorg At
1
There are 1 best solutions below
Related Questions in IIS
- Create an IIS web request activity light
- Why web API return 404 when deploy to IIS
- Adding site Binding programmatically IIS 7.5
- .net Web Api 2 Owin authentication token expires suddenly and often on IIS 8.5
- Redirecting subdomain to directory on Azure
- Saving Image To a Temp Folder is Loosing Session
- The page cannot be displayed because an internal server error has occurred on server
- Approach for performing long running tasks in .NET
- Why does IIS Anonymous Authentication turn on by itself after I publish my project to server?
- IIS 7 ERR_CONNECTION_TIMED_OUT only with public IP
- Maximum value for IIS .NET Compilation Batch Time-out
- ASP.Net 1.1 app on IIS 7 waiting threads
- File upload web api 2.0 error after deployment on IIS 8.5
- nginx and IIS - dealing with invalid hostname and SSL
- Allow console application to access Windows Authenticated web app
Related Questions in SSL
- How to Fix TLS CBC Incorrect Padding Abuse Vulnerability on Windows 2003 Server
- SSL: Error parsing the certificate: Ok
- PHP mysqlnd sha256_password plugin "Access denied", user works from cli mysql
- CFNetwork SSLHandshake failed iOS 9
- Java does not accept 2 methods with same name
- Expected Compatibility Issues with upcoming TLS/SSL Cipher Suite update on Azure WebApps?
- python requests SSLError
- Connecting via mutual SSL fails reading incoming changeCipherSpec
- HTTP to HTTPS mapping using proxy servers
- Ruby on Windows XP: How to change directory of SSL certificates
- KeyStore file is not found in jar, although present in jar
- How do I accept a self-signed SSL certificate using iOS 7's NSURLSession
- Chef remote_file from https site with self signed certificate
- Meteor force-ssl on a staging system without ssl cert?
- Use python SSL to download google.com.au page
Related Questions in CTL
- constructing valid CTL or LTL expression (in NuSMV)
- NuSMV at least 5 time steps to win
- sql loader load into multiple tables from single CSV file
- Replace $ char with zero for data field using SQLLoader
- CTL Equivalence checking
- How to express the fact that one property occurs in one path before another property in CTL?
- Certificates and Trust in Windows - Updates or Installs the the complete CTL?
- SQLLDR and .ctl files
- error when importing with a ctl file sqlldr oracle
- Oracle SQL*Loader WHEN Clause Raising Error 2
- Load CSV with SQLLDR (Rejected)
- sql loader case statement- how to populate a column based on another table and column values
- How can I request a client certificate only from a particular CA
- How do you read a set of atomic propositions?
- How to fix Skin that changes when you click 'Edit' on third party DNN modules?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
I had to do this for over 400 certificates on two servers... twice (because GPOs overwrote my settings).