BizTalk Server General - RE: Client certificate authentication in HTTP send port - 403 forb

This is Interesting: Free IT Magazines  
Home > Archive > BizTalk Server General > December 2004 > RE: Client certificate authentication in HTTP send port - 403 forb





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author RE: Client certificate authentication in HTTP send port - 403 forb
Doug Hughes

2004-12-23, 7:46 am

Some more evidence that the client certificate is not being sent.

I set the BizTalk HTTP send port to Basic authentication and entered a
username and password. On the web server I set the access permissions to
allow basic authentication, require SSL but just ACCEPT client certificates
(no mapping to windows user). This all worked OK and the request was
successful.

I changed the web server access permissions to REQUIRE a client certificate,
but left all other settings alone, and got a 403 response again.

Also, I tried changing the certificate thumbprint slightly in the BizTalk
HTTP send port configuration, and got an error indicating that the
certificate could not be found, as expected. So, my guess is that BizTalk
looks for the certificate when a thumbprint is specified but does not send it.

Does anyone know a (simple!) way to capture the HTTP request, either before
it leaves the BizTalk server or as it arrives at the web server, so I can
check whether a client certificate has been provided? It's a bit beyond my
skills!

Doug

Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com