Hi
Doesn't Request.ServerVariables("Subject") return some information like:
CN = common-name OU = Organisational Unit O = Organisation L = Sydney S =
NSW C = AU
Usually it is the common-name that is the identifier (well, at least for
machine identification - the CN needs to match the FQDN of the machine. Not
sure about user auth).
Cheers
Ken
: Thanks, but Request.ServerVariables doesn't return Client Certificate
info.
: Request.ClientCertificate does, but I don't know if it's the serial number
: that I want, or something else...
:
:
:
: : > Hi,
: >
: > There's a heap of information available in the Request.ServerVariables
: > collection:
: >
:
http://msdn.microsoft.com/library/d...-us/iissdk/iis/servervariables.asp?frame=true
: >
: > Or you can map client-certs to Windows accounts (not sure if that's
: suitable
: > in an external facing environment though).
: >
: > Cheers
: > Ken
: >
: > : > : That's exactly what I'm doing. I'm just looking for a procedure to
query
: > the
: > : uniqueness of the certificate, so that I can store the certificate's
ID,
: > : serial number, or whatever, in a database along with the user's name.
: > :
: > : BTW, this is not an intranet, it's a subscriber service.
: > :
: > :
: > : : > : > Why don't you use Client Certificates?
: > : >
: > : > Cheers
: > : > Ken
: > : >
: > : >
: > : > : > : > : Can anyone point me to any resources on client authentication on
an
: > SSL
: > : > : server using ASP?
: > : > :
: > : > : I'm looking to use this as part of a password authentication
scheme
: to
: > : > : uniquely identify the user's browser for a high security
: application.
: > : > :
: > : > : Thanks!
: > : > :
: > : > :
: > : >
: > : >
: > :
: > :
: >
: >
:
:
