IIS 7 and Above
IIS 10 CTL not working correctly
Re: IIS 10 CTL not working correctly
Nov 01, 2019 06:11 PM|brentil|LINK
I found the solution finally. It appears this was in a couple of the last later versions too but the fact that it was set on our newer servers was lost in pre configuration management tracking era. Once this setting is set and I ran iisreset the CTL list
began being respected for client certificate selection.
The behavior to send the Trusted Issuer List by default is off: Default value of the SendTrustedIssuerList registry key is now 0 (off by default) instead of 1.
DWORD SendTrustedIssuerList = 1