473,473 Members | 1,488 Online
Bytes | Software Development & Data Engineering Community
Create Post

Home Posts Topics Members FAQ

Client Certificate Support

I have an IIS6 site that does not have an SSL certificate installed.
I do not want to install a server SSL cert on the site.

I want to protect certain .aspx pages based on the availibility of the
web browser client certificate. I want to do something like this:

HttpClientCertificate clientCert = Request.ClientCertificate;
if ( clientCert.IsValid == true )
{
if ( clientCert.PublicKey == bytesIexpectToGet )
{
// Allow access to the page
}
}

But
(1) does that work with IE on Windows, IE on Mac, Netscape on Windows,
Opera on Windows, Safari on Mac?
(2) can I do the above without needing SSL certificates or any
non-default IIS Admin settings on the web server?

This is for an ISP hosted environment where I have no control over any
IIS settings.

Thanks.

Nov 18 '05 #1
1 1675
Hi Localhost,

Thanks for posting in the community!
From your description, you'd like to manually obtain the client
certificates in your ASP.NET code without setting the certification
requirment on the IIS server, yes?
If there is anything I misunderstood, please feel free to let me know.

Based on my research, the client side certificate will be sent to the
requested site only if the site has configured to request the certain
certificate. Otherwise, no certificate will be sent. Here is the detailed
related document in MSDN:

#Request.ClientCertificate Collection
http://msdn.microsoft.com/library/en...qoccc.asp?fram
e=true

And here are some other references on Certificate Services

#Certificate Services
http://msdn.microsoft.com/library/en...ificate_servic
es.asp?frame=true

#Publishing Web Sites using Client Certificate Authentication
http://www.isaserver.org/tutorials/P...Client_Certifi
cate_Authentication.html

Please check out the preceding items. If you have any further questions,
please feel free to post here.

Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Get Preview at ASP.NET whidbey
http://msdn.microsoft.com/asp.net/whidbey/default.aspx

Nov 18 '05 #2
Create Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics
0
Dump client certificates from SSL to file?
by: Jonas Oholm (Sweden) | last post by:
Hi I'm using the following ASP-page (taken from http://support.microsoft.com/default.aspx?scid=kb;en-us;216829) to dump client certificates from an SSL connection to a file on the webserver. It...
Latest Bytes
0
C# fails to connect to IIS Web Service if we require both Client Certificate and Username/Password
by: Joey Edelstein | last post by:
Hi, We are trying to add a Client Certificate support for our web app that emulates a hardware device web app. The hardware uses a 2 factors authentication, which requires a Web Service client...
Latest Bytes
4
Client Certificate Validation
by: Matt Frame | last post by:
I am working on a special ASP.Net application that receives files from customers. The connection is made via HTTPS and the client sends the file as a POST to my ASP.Net listener. All of this...
Latest Bytes
1
SOAP access denied when IIS set to required client certificate
by: Bob | last post by:
I'm building a .NET web service which requires client certificate for strong security. I set IIS to require SSL and client certificate (under site properties in IIS admin, Directory Security tab,...
Latest Bytes
3
Some queries on Client Certificates
by: dinoo | last post by:
I would appreciate if some one answers these queries. Thanks in advance. If My web server is SSL enabled, then why should I havea client certificate authentication? what extra security it...
Latest Bytes
1
httpWebRequest not sending client Certificate
by: Marvin | last post by:
my asp.net app is posting to another webpage using httpwebRequest & x509Certificates and in return the certificate's name used for the posting is sent back. But instead of getting information about...
Latest Bytes
5
SSL Client Authentication
by: wrytat | last post by:
I'm not sure if I'm posting the correct place. I posted it somewhere else, but someone told me to post it at another place. Anyway, some background first. I am currently building a web...
Latest Bytes
5
using Multiple client certificates
by: | last post by:
Hi all, HttpWebRequest, and SoapHttpClientProtocol both expose a ClientCertificates property, which can hold multiple client certificates, but on the service side, it can only receive one client...
Latest Bytes
2
HttpWebRequest and client certificates
by: steveS | last post by:
Hi all, I'm having trouble connecting to a Java web service using HttpWebRequest. I get the error message "The request was aborted: Could not create SSL/TLS secure channel". The Java service...
Latest Bytes
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Latest Bytes
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
Latest Bytes
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
Latest Bytes
0
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Latest Bytes
1
The easy way to turn off automatic updates for Windows 10/11
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
Latest Bytes
0
tracyyun
Discussion: How does Zigbee compare with other wireless protocols in smart home applications?
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
Latest Bytes
0
Trying to create a lan-to-lan vpn between two differents networks
by: TSSRALBI | last post by:
Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The...
Latest Bytes
0
Windows Forms - .Net 8.0
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
Latest Bytes
0
transfer the data from one system to another through ip address
by: 6302768590 | last post by:
Hai team i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated ...
Latest Bytes

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes
How to Post and Respond on Bytes
How to Promote and Link on Bytes
How to increase your Ranking on Bytes
Become a Recognized Expert on Bytes
Feedback Welcomed! Contact Us