Hi,
I'm trying to securise a web access using clients certificates.
But when I pass my IIS in "require" (for the client certificat), I've got a 403
How I tried to configure it :
1) creating a CA certificate with makecert :
makecert.exe -r -n “CN=My CA” -pe -sv MyCA.pvk -a sha1 -len 2048 -b 08/08/2013 -e 08/08/2013 -cy authority MyCA.cer
2) creating a Client certificate :
makecert.exe -iv MyCA.pvk -ic MyCA.cer -n “CN=Client” -pe -sv Client.pvk -a sha1 -len 2048 -b 01/21/2010 -e 01/21/2011 -sky exchange Client.cer -eku 1.3.6.1.5.5.7.3.2
3) creating a pfx file :
pvk2pfx.exe -pvk Client.pvk -spc Client.cer -pfx Client.pfx -po pass
4) with the Certificate MMC (computeur snap-in), addition of MyCA in trusted CA and of Client in "personnal"
5) "require" client certificate in IIS
6) Double-click on my pfx file on my client to install it.
Result : error 403
Can you detect any mistake in my configuration?
Thanks for reading and for your eventual replies