Previous Next

• 08-19-2008, 3:43 AM

  Markus7 Joined on 02-13-2008, 7:32 AM Posts 6

  1-to-1 client certificate mapping per script Reply Contact Hallo! I currently install a WebSite on IIS6 (&IIS7). Currently SSL is configured and activated automatically (CA, server-cert). The requirement of a client-cert. is also checked. But I did not find a way to configure client-certificate mapping per script (vbs) on iis6. I have a client certificate in the required form .cer and if necessary also in .p12 (the DN of the certificate is the username). The configuration can also be done by a batchfile if necessary.  Can you help me?

  Tags: IISCertificateIIS6

• 08-19-2008, 1:21 PM

  In reply to

  patrickmu Joined on 02-22-2006, 7:26 PM Posts 4	Re: 1-to-1 client certificate mapping per script Reply Contact See if the IIsCertMapper admin object will do what you need.

• 08-21-2008, 10:34 AM

  In reply to

  Markus7 Joined on 02-13-2008, 7:32 AM Posts 6

  Re: 1-to-1 client certificate mapping per script Reply Contact Thanks, this Object does the trick for IIS6.   For IIS7: I did the client certificate mapping based on this script: http://blogs.iis.net/ulad/archive/2007/01/19/vbscript-to-configure-one-to-one-client-certificate-mapping-on-iis7.aspx And enabled Ssl, Ssl128, SslRequireCert,SslNegotiateCert and anonymous access. "system.webServer/security/authentication/iisClientCertificateMappingAuthentication" is also enabled, the module is installed. But when I access the site the mapping does not occur, but I'm asked for a client certificate. I'm still the anonymous user. So the client certificate must be valid. -- Edit: Solved: I installed the mappings in a vdir instead of the WebSite itself (eg. "Default Web Site"). Now, installed at "/", it seems to work.