Doh! You know, last night I thought about asking if you'd done that, but I
forgot to do so. I must be getting senile. :-) Glad you got it figured out.
Laura
-----Original Message-----
From: John Lightfoot [mailto:jlightfoot@gmail.com]
Sent: Tuesday, March 07, 2006 11:09 AM
To: larobins@bellatlantic.net; focus-ms@securityfocus.com
Subject: RE: Certificate authentication under IIS
The NTFS permissions were the defaults, but I just figured
out the problem.
In order to enable certificate login, I needed to change the
properties of the web server, not just the web site. On the
web *sites* properties/directory security tab I needed to
check "Enable the Windows directory services mapper", then
under authentication methods I disabled anonymous access and
enabled "Integrated Windows authentication." On the web
*site* properties/directory security/authentication methods
screen I disabled anonymous access and all authentication
methods. Now once I've responded to the challenge for the
client certificate, I'm logged into the account to which the
certificate is mapped.
Thanks everyone for all the help.
-----Original Message-----
From: Laura A. Robinson [mailto:larobins@bellatlantic.net]
Sent: Tuesday, March 07, 2006 9:52 AM
To: 'John Lightfoot'; focus-ms@securityfocus.com
Subject: RE: Certificate authentication under IIS
Okay, what are the underlying NTFS permissions to the
files/folders to which you're browsing? It sounds like the
user to whom you've mapped the certificate doesn't have permissions.
Laura
---------------------------------------------------------------------------
---------------------------------------------------------------------------
