Hi,
I am also facing the same issue on my vista development computer.
I think it is an undocumented behavior around iis+asp.net2.0+certificates.
This is the analysis so far:
- My computer is running vista, iis and vs 2008.
- I am using asp.net 2.0 web services and iis. I had to activate iis6
compatibility in order to run this web service on iis.
- After activating IIS certificates and running a test with an untrusted
client certificate (sample certificate issued with the test root),
iis+asp.net issued an error about the client certificate being invalid.
- After switching the test to use a valid+trusted client certificate, the
request to the web method gets processed normally.
Previous behavior reveals the client certificate gets validated by
iis+asp.net. This isn't consistent with "Request.ClientCertificate.IsPresent"
being false (no client certificate). I even can get to the subject and issuer
through Request.ServerVariables.
I am still looking at the issue, but so far my only guess it only gets
populated when you get iis to map it to a windows account. I haven't verified
it since that is the configuration we (me and my client) wanted to avoid in
the first place. Since I want it to do some authorization, once the mapping
is done there is no longer a point to get the client certificate.
Is there any special additional configuration on this?