It doesn't seem to work that way. If I allow anonymous access, even though I require a client certificate, have the certificate mapped to a user account, and present the client certificate when I navigate to the web site, the IIS log doesn't show the user as having logged in. If I also check "Integrated Windows authentication," I present the certificate but am required to log in with username/password, then the user account shows up in the log. If I *don't* allow anonymous access, I can't get in at all, that's when I get the 401.2 error.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Monday, March 06, 2006 9:41 PM To: [email protected] Subject: Re: Re: Certificate authentication under IIS This should work out of the box. Website, Directory security, Secure communications, check Require SSL, check Require 128 bit, select Require client certificates, check enable client certificate mapping, press edit and pick your windows account mappings. Regards, Craig. --------------------------------------------------------------------------- --------------------------------------------------------------------------- --------------------------------------------------------------------------- ---------------------------------------------------------------------------
