|
Home > Archive > IIS Server Security > January 2007 > SSL Detect Redirect
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
SSL Detect Redirect
|
|
|
| I would like to find a way to detect if our SSL certificate is
installed locally on the clients computer and redirect based on if
it's present or not. We self assign certificates and do not have the
need to buy one. Since the release of IE7, users are now getting the
"There is a problem with this website's security certificate" page
and are not continuing on. We have a way of installing the certificate
through a web page, so I would like a script that would check if the
certificate is installed and sent them to the secure page if not
redirect them to the certificate install page. Does anyone know if this
is possible?
| |
| Ken Schaefer 2007-01-09, 1:49 am |
| Hi,
There isn't any way of doing this without running code on the client
machine. In that case the user would receive a warning that unsafe code is
wanting to run on their machine. Additionally, since the SSL connection is
negotiated before anything is transferred between the server and the client,
you'd need to send the necessary code to the client over a HTTP connection,
before they users moved over to HTTPS.
Probably better would be to setup your own PKI. You can install your CA's
root signing certificate into the user's Trusted CA store (if you have an
Active Directory integrated CA, then this happens automatically for all
domain machines), and then all certificates you issue will automatically be
trusted by domain-joined machines.
Cheers
Ken
"Greg" <djkornnut@yahoo.com> wrote in message
news:1166714143.097151.62530@a3g2000cwd.googlegroups.com...
>I would like to find a way to detect if our SSL certificate is
> installed locally on the clients computer and redirect based on if
> it's present or not. We self assign certificates and do not have the
> need to buy one. Since the release of IE7, users are now getting the
> "There is a problem with this website's security certificate" page
> and are not continuing on. We have a way of installing the certificate
> through a web page, so I would like a script that would check if the
> certificate is installed and sent them to the secure page if not
> redirect them to the certificate install page. Does anyone know if this
>
> is possible?
>
|
|
|
|
|