I've created a self-signed certificate in IIS7. Then I exported this certificate to a .pfx and then installed it on the client machine's IE browser. Then I set "Require Client Certificate" on the server's IIS configuration. When I try to visit the site with IE, a dialog box comes up for me to choose a certificate, however, there are no certs in that dialog box. When I click "OK" without choosing any certs, I get a 403 forbidden error. How can I make this work? Appreciate the help in advance.
+1
A:
What happens if you dont set the "Require Client Certificate"? If you recieve the "There is a problem..." page. Then there is some issue with the internet explorer not trusting your certificate. If it's not trusting it, it wont use it to authenticate( I think).
Igal Serban
2009-09-17 21:32:24
It seems that self-signed certificates have these issues with IE because there is no Certificate authority. Once I created a certificate authority and added it to my trusted certs store. It worked. When I added the self-signed certificate to my trusted certs, though, it didn't work.
Kant
2009-12-05 20:31:41
+1
A:
I have just spent a week failing to make Windows Server 2008, IIS 7, SSL and Client Certificates work. There are many posts like yours over the web. I have yet to find one that gives simple instructions on how to achieve this! Sorry, but many other people are sharing your pain...
David Bond
2009-10-24 21:30:16