Hi All,
I have been recently working on configuring Mutual SSL between 2 windows boxes where I am finding difficulties in acheive the same.
Below are the steps I did. Please help if someone has come across similar issues
Our servers already have SSL certificates installed and configured,.
1. copied the client certificate blob which was extracted from client mmc console.
2. Installed IISClientcertificatemapping feauture in server side.
3. Opened IIS manager is server side and navigated to the Application
4. Opened Configuration editor and selected security ->authentication -> iisclilentcertificatemappingauthetication in section
5. Added the client certificate blob to onetoonemappings
6.provided a windows username and password along with domain name
7. opened authentication and disabled all the authentication methods
8. enabled require SSL from SSL settings
9. At the client side imported the client pvk file to the browser
After all this I get 401.2 Unauthorized error, so I enabled anonymous authentication alone
then the application worked, but now the problem is it works though I remove the onetoonemappings blob, so not sure if it properly mapped. Also even if i try with some other client certificate also it works.
So the only thing enabled here is SSL, but not Mutual SSL.
Can someone please help ?