Hello,
This is my first time working with Certificates.
i have a asp.net web app.
1. I managed to create a Server Certificate(Self-Signed Certificate).
2. SSL Settings (Accept) and my site runs without any problem with https://COMPUTERNAME/WebApp/
Now creating Certificate Authority
1. Create Certificat Auhtority
makecert -n "CN = RootCaClientTest"-r -sv RootCaClientTest. pvk RootCaClientTest. cer
which creates RootCaClientTest.cert and RootCaClientTest.pvk
2. Create and Install User's Digital Certificate
makecert -sk MyKeyName -iv RootCaClientTest.pvk -n "CN=tempClientcert" -ic RootCaClientTest.cer -sr currentuser -ss my -sky signature -pe
This creates my tempClientcert.
3. Open MMC -> Add/Remove Snap-in -> Select Certificates -> My User Account - >List of Folders -> Personal ->Certificates ->
I see my tempClientcert( Issued to tempClientcert Issued By RootCaClientTest)
4. Right-Click->Export -> No Do not export Private key -- Based 64 Encoded... -- finally save it to my desktop.
5. Right-Click open with notepad, Remove --Begin Certificate --- and --End Certificate--Bring the Text in one line.
6. Copy the Content of the file, open IIS - > Default Web Site - > WebApp -> Configuration Editor -> One to One mapping - > Certificate-- Paste the date there, enter Username:domain/username, Password : *******, enabled = true.
7. SSL Settings - > Required SLL checked, (Require)
8. IIS - > (Default Web Site) Client Certificates - > Add Client Certificate on my Desktop (tempClientcert), add domain/username and password.
9. Reset IIS and open https://COMPUTERNAME/WebApp
and i get
HTTP Error 403.7 - Forbidden
The page you are attempting to access requires your browser to have a Secure Sockets Layer (SSL) client certificate that the Web server recognizes.
I have spent 2 days now, going through every blog i can to find a solution, but i failed.
I see my client certificate on IE -> Internet Options -> Content -> Personal.
I tried to Import manually to Intermediate Certification Authorities and Trusted Certification Authorities.
It showed successfully Imported, i see it in Intermediate Certification Authorities, but i still don't see it in tab Trusted Certification Authorities. I hope these details might help.
Any help would be appreciated.
Thanks
Menon