http://forums.iis.net/1043.aspxDiscussions around the security of IIS 7 including compentization, hidden directories, or authentication\authorizationenCommunityServer 2007 SP1 (Build: 20510.895)http://forums.iis.net/thread/1910863.aspxMon, 20 Jul 2009 16:10:18 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:1910863SherriBlane0http://forums.iis.net/thread/1910863.aspxhttp://forums.iis.net/commentrss.aspx?SectionID=1043&PostID=1910863Hi, I'm not sure this will be of great help to you but if you have already done what is explained in the blog, you may check out this forum topic. It discusses and then gives a link to how to install on a client machine. Hope this helps. http://forums.iis.net/t/1150242.aspxhttp://forums.iis.net/thread/1909831.aspxFri, 10 Jul 2009 06:43:07 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:1909831chris.arnold0http://forums.iis.net/thread/1909831.aspxhttp://forums.iis.net/commentrss.aspx?SectionID=1043&PostID=1909831I am attempting to secure one of our internal IIS7 servers using this Client Certificate stuff and I've come across a few questions / issues. 1. I have successfully generated a client certificate on our CA for a domain user. Which format do I export this as in order to install it onto the client machine? e.g. do I need the private key? 2. I want to make Client Certificates a requirement when a user logs on to the website. How do I setup mapping to the domain account? I can see how to enable One-to-One mapping but this seems to require me to know and enter the user's password! 3. What are the actual benefits of using Client Certificate Mapping? Many thanks, Chris