I am creating a new site (ASP.Net, VB codebehind pages, .Net 3.5) to replace the "Classic ASP" site.
Some of the pages are "publicly accessible", and the rest require authentication - in this case, this is done by reading the CAC cards issued by DoD through the keyboard.
Now for the "production" they configure IIS so that it performs authentication (by reading the card and asking for the PIN code) when it gets to a certain directory (in this case it protects), so that all pages in this tree are secured.
I come to the point where I need to see some information for the map, but when I "F5" on the website I'm developing, all the Request.Clientcertificate stuff is empty - there is no "call" going on with the ASP.NET development server Cassini
I see links to "configure IIS to host SSL in the destination directory", but I do not run IIS on this development computer (and not the other developer who will soon encounter this). Network support will do this when the site is eventually copied into production, but I need to check some security features.
How do I configure the server that comes with VS2008 to read the CAC and download the server / session variables that I need to request? Alternatively, is there anything I can add to the .aspx or .aspx.vb pages themselves that can mimic or trigger a security call?
Thanks in advance.
source
share