Hi!
Situation: WS2012 R2 / IIS 8.5, two way SSL is required, so client must have certificate for accessing website. While trying to access website, all certificates with authentication EKU are allowed/listed in client. Even certificates not trusted by IIS server.
Question: How to configure IIS to allow only certificates in Trusted Certification Authorities and/or Client Authentication Issuers stores to be listed in client side?
Thanks,
UV