472,952 Members | 2,203 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 472,952 software developers and data experts.

Active Direcotory - Map a certificate to a user account

It is possible to Map a certificate to a Active Directory User Account from
Please provide an example.

Best regards,

Ejnar Jakobsgaard
To map a certificate to a user account
Open Active Directory Users and Computers.
On the View menu, select Advanced Features.
In the console tree, click Users.

Active Directory Users and Computers
domain node
Or, click the folder that contains the user account.

In the details pane, click the user account to which you want to map a
On the Action menu, click Name Mappings.
In the Security Identity Mapping dialog box, on the X.509 Certificates tab,
click Add.
Type the name and path of the .cer file that contains the certificate you
want to map to this user account, and then click Open.
Do one of the following: To Do this
Map the certificate to one account (one-to-one mapping) Confirm that both
the Use Issuer for alternate security identity and the Use Subject for
alternate security identity check boxes are selected.
Map any certificate that has the same subject to the user account,
regardless of the issuer of the certificate (many-to-one mapping) Clear the
Use Issuer for alternate security identity check box, and confirm that the
Use Subject for alternate security identity check box is selected.
Map any certificate that has the same issuer to the user account, regardless
of the subject of the certificate (many-to-one mapping) Clear the Use Subject
for alternate security identity check box, and confirm that the Use Issuer
for alternate security identity check box is selected.


To perform this procedure, you must be a member of the Account Operators
group, Domain Admins group, or the Enterprise Admins group in Active
Directory, or you must have been delegated the appropriate authority. As a
security best practice, consider using Run as to perform this procedure.
To open Active Directory Users and Computers, click Start, click Control
Panel, double-click Administrative Tools, and then double-click Active
Directory Users and Computers.
The certificate you are mapping to a user account must be in Distinguished
Encoding Rules (DER) or Base64 encoded binary format. For instructions on
exporting an existing certificate to a .cer file, see Related Topics.
Jan 16 '06 #1
0 2684

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

by: Helena Cai | last post by:
Hi, Due to the nature of our system, we need to dynamically import certificate files into windows certificates store and access the certificate store from ASP pages, these ASP pages call a VB...
by: Johan Delimon | last post by:
Hello, I have created an ASP page that requests special V2.0 Certificates for a user. This is to use with our VPN solution. My code errors on this line: requeststr =...
by: Matt Frame | last post by:
I am working on a special ASP.Net application that receives files from customers. The connection is made via HTTPS and the client sends the file as a POST to my ASP.Net listener. All of this...
by: Luis Esteban Valencia | last post by:
Hello gusys, Is it possible to make my asp.net application add users to the AD , I also want to be able to delete users, modify their information, everything through a website. Thanks for the...
by: Marcin Belczewski | last post by:
Hi Is it possible to map a X.509 certificate using WSE to Active Directory user account. I know it's possible using transport level security. How this can be achieved using WSE? Marcin ...
by: Lucky | last post by:
Hi guys, after long long time. i'm back again with another problem. this time i think the problem is very very interesting and i really need you help on this. i'm trying to connect to the...
by: jnet | last post by:
Hi, How Do I retrieve the mapped account to a client certificate in .NET? I have multi certificates distributed to different clients; I want to know from whom the request is coming, so I can load...
by: fireline1082 | last post by:
Hi all, I have a question: How can I write a code in C# to list the published user certicate in Active Directory. If I navigate through the active directory, I can see the user's certificate. ...
by: Mushico | last post by:
How to calculate date of retirement from date of birth
by: DJRhino | last post by:
Was curious if anyone else was having this same issue or not.... I was just Up/Down graded to windows 11 and now my access combo boxes are not acting right. With win 10 I could start typing...
by: Aliciasmith | last post by:
In an age dominated by smartphones, having a mobile app for your business is no longer an option; it's a necessity. Whether you're a startup or an established enterprise, finding the right mobile app...
by: tracyyun | last post by:
Hello everyone, I have a question and would like some advice on network connectivity. I have one computer connected to my router via WiFi, but I have two other computers that I want to be able to...
by: giovanniandrean | last post by:
The energy model is structured as follows and uses excel sheets to give input data: 1-Utility.py contains all the functions needed to calculate the variables and other minor things (mentions...
by: NeoPa | last post by:
Hello everyone. I find myself stuck trying to find the VBA way to get Access to create a PDF of the currently-selected (and open) object (Form or Report). I know it can be done by selecting :...
by: Teri B | last post by:
Hi, I have created a sub-form Roles. In my course form the user selects the roles assigned to the course. 0ne-to-many. One course many roles. Then I created a report based on the Course form and...
by: NeoPa | last post by:
Introduction For this article I'll be focusing on the Report (clsReport) class. This simply handles making the calling Form invisible until all of the Reports opened by it have been closed, when it...
by: isladogs | last post by:
The next online meeting of the Access Europe User Group will be on Wednesday 6 Dec 2023 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, Mike...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.