Doh! You know, last night I thought about asking if you'd done that, but I forgot to do so. I must be getting senile. :-) Glad you got it figured out.
Laura > -----Original Message----- > From: John Lightfoot [mailto:[EMAIL PROTECTED] > Sent: Tuesday, March 07, 2006 11:09 AM > To: [EMAIL PROTECTED]; focus-ms@securityfocus.com > Subject: RE: Certificate authentication under IIS > > The NTFS permissions were the defaults, but I just figured > out the problem. > > In order to enable certificate login, I needed to change the > properties of the web server, not just the web site. On the > web *sites* properties/directory security tab I needed to > check "Enable the Windows directory services mapper", then > under authentication methods I disabled anonymous access and > enabled "Integrated Windows authentication." On the web > *site* properties/directory security/authentication methods > screen I disabled anonymous access and all authentication > methods. Now once I've responded to the challenge for the > client certificate, I'm logged into the account to which the > certificate is mapped. > > Thanks everyone for all the help. > > -----Original Message----- > From: Laura A. Robinson [mailto:[EMAIL PROTECTED] > Sent: Tuesday, March 07, 2006 9:52 AM > To: 'John Lightfoot'; focus-ms@securityfocus.com > Subject: RE: Certificate authentication under IIS > > Okay, what are the underlying NTFS permissions to the > files/folders to which you're browsing? It sounds like the > user to whom you've mapped the certificate doesn't have permissions. > > Laura > > --------------------------------------------------------------------------- ---------------------------------------------------------------------------
