BizTalk Server General - RE: Client certificate authentication in HTTP send port - 403 forb

This is Interesting: Free IT Magazines  
Home > Archive > BizTalk Server General > December 2004 > RE: Client certificate authentication in HTTP send port - 403 forb





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author RE: Client certificate authentication in HTTP send port - 403 forb
Doug Hughes

2004-12-23, 7:46 am

Just a bit more evidence that the certificate is not being sent.

If I set the BizTalk HTTP send port to Basic authentication and set a
username/password, and on the target web server, in IIS, set the access
permissions to allow basic authentication, require SSL but just ACCEPT
certificates with no mapping to a windows user then it all works.

As soon as I set the IIS access to REQUIRE certificates I get 403, even with
basic authentication still set.

Note that if I change the thumbprint slightly in the BizTalk HTTP send port
configuration then I get a different error in HAT. The error indicates that
the certificate could not be found, so I know that BizTalk is looking for the
certificate but my guess is that it's not being sent.

Because the request is rejected by the web server with a 403 response, I
can't tell what the request looked like. Does anyone know how to capture the
HTTP request, either as it leaves the BizTalk server or as it arrives at the
web server but before IIS processes it? This is a bit beyond my skills!

Doug
Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com