I have a Windows 2008 R2 server running IIS 7.5, and I'm trying to configure an application to use client certificate authentication, but when I try to access a page on the application, the browser does not even ask for a certificate and I just get error 401.2: You are not authorized to view this page due to invalid authentication headers.
If I check "Authentication" on the server node in IIS, "Active Directory Client Certificate Authentication" is enabled.
In the application itself, all authentication metods (Anonymous, ASP.Net, Basic, Windows, Forms) are disabled.
The SSL settings are set to "Require SSL" and client certificates: "Require".
The certificate installed in the browser can be used for client authentication, and the CA that signed the certificate is trusted on the web server.
Is there something I still need to configure? Otherwise, how can I troubleshoot this?