Hi, I'm not asking whether it's a personal cert or not. I'm asking whether this cert is being used for client authentication or server authentication, as the certificate store (machine -vs- user as well as the location) are different.
If it's a client authentication certificate, then the remote webserver presents a list of trusted CAs during the SSL handshake. IE will only show certs that are properly chained, and issued by CAs in that list in the "select a certificate" dialogue presented to the user. I would check that the issuing CA is in one of the trusted CA stores for the user, and that the client authentication certificate is in the personal store (which you seem to have done). Then you will need to make sure that the CA is listed in the list returned by the remote webserver. Cheers Ken From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Wednesday, 10 December 2008 1:42 AM To: NT System Admin Issues Subject: RE: Personal SSL Cert disappearing It's a personal cert that's installed via the banks website. I have even exported it, then imported it. It shows as imported fine, but when I open IE, it does not show up under personal certs. The bank claims that it belongs under personal certs. I have also tried to install it in other locations such as trusted publishers, and while it saves there, it will not show up when the bank looks for it. This is a Widows XP Pro machine, SP2, IE7 on 2003 AD. Dave =================================== Beach Computers Affordable Hosting Solutions http://www.beachcomp.com =================================== Cheap Domain Warehouse Get Your Own Dot! http://www.cheapdomainwarehouse.com ------------------------------------ Disclaimer and confidentiality note: The contents of this communication are intended/meant only for addressee(s) and may contain information that is privileged or otherwise confidential. If you are not the intended recipient you are hereby notified that any disclosure, copying, distribution or taking any action in reliance on the contents of this information is strictly prohibited and may be unlawful. The contents of this e-mail shall not be forwarded to any third party. If you have received this electronic mail transmission in error, please delete it from your system without copying or forwarding it, and notify the sender of the error by reply email, so that the sender's address records can be corrected. Views and opinions are solely those of the sender unless clearly indicated as being that of Beach Computers or any of it's affiliated companies. Beach Computers cannot assure that the integrity of this communication has been maintained or that it is free of errors, virus, interception or interference. From: Ken Schaefer [mailto:[EMAIL PROTECTED] Sent: Monday, December 08, 2008 7:35 PM To: NT System Admin Issues Subject: RE: Personal SSL Cert disappearing Is the cert a client authentication cert? Or a server authentication cert? If the latter, then it shouldn't be installed in "Personal Certs" Instead, the CA's cert (that issued the server auth cert) should be installed in Trusted Root CAs. If it's a client authN cert, use MMC (add the Certificates snapin) - does the cert disappear by itself? Cheers Ken From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Tuesday, 9 December 2008 10:35 AM To: NT System Admin Issues Subject: Personal SSL Cert disappearing Hi all, Got a very odd issue. We have a domain user who is trying to log onto a bank website. The bank requires an SSL cert to be installed. The cert installs and shows as installed under personals certs, but, once IE is closed and reopened, it's gone. Anyone have any ideas? Thanks! Dave =================================== Beach Computers Affordable Hosting Solutions http://www.beachcomp.com =================================== Cheap Domain Warehouse Get Your Own Dot! http://www.cheapdomainwarehouse.com ------------------------------------ Disclaimer and confidentiality note: The contents of this communication are intended/meant only for addressee(s) and may contain information that is privileged or otherwise confidential. If you are not the intended recipient you are hereby notified that any disclosure, copying, distribution or taking any action in reliance on the contents of this information is strictly prohibited and may be unlawful. The contents of this e-mail shall not be forwarded to any third party. If you have received this electronic mail transmission in error, please delete it from your system without copying or forwarding it, and notify the sender of the error by reply email, so that the sender's address records can be corrected. Views and opinions are solely those of the sender unless clearly indicated as being that of Beach Computers or any of it's affiliated companies. Beach Computers cannot assure that the integrity of this communication has been maintained or that it is free of errors, virus, interception or interference. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
