Hi All,
I am planning to use IIS Client Certificates authentication to authenticate clients. So, client is going to send certificate, and IIS supposed to validate the certificate and allow the client user to go through or reject the request.
As part of this, I am looking at iisClientCertificateMappingAuthentication one to one mapping option, but this is expecting client certificate mapping to user.
<oneToOneMappings> <add enabled="true" userName="administrator" password="[enc:57686f6120447564652c2049495320526f636b73:enc]" certificate="Base64-Encoded-Certificate-Data" /> </oneToOneMappings>
Why user mapping is required? I just want to validate the client certificate. I have placed the client certificate public key into Server Trusted People store. Is this not enough for IIS to validate the incoming certificate? I am just wondering that why I need to map certificate to user.
Any comments?