IIS 7 How do I map a client certificate to a user account in a database?

Question

IIS 7 How do I map a client certificate to a user account in a database?

It says http://blogs.iis.net/webtopics/archive/2010/04/27/configuring-many-to-one-client-certificate-mappings-for-iis-7-7-5.aspx

All-to-one client certificate mapping is used by IIS to bind the end user to a Windows account when the client certificate is used to authenticate the user.

What if I do not want to map a Windows account, but with an account in a user database or membership?

How to do this in asp.net (example code somewhere?)

Hmm: no one knows? Soon have to reward :)

+7

certificate ssl asp.net iis-7

user310291 Jul 20 '12 at 6:14

source share

1 answer

jle · Accepted Answer · 2012-07-21T19:32:21+0000

US DOD uses this for CAC. Essentially, you just store some part of the certificate (say SUBJECT) and then compare it with authentication.

In ASP.Net, you get access to a client certificate:

Request.ClientCertificate.Subject

Many certificate objects will have a unique identifier inside, therefore the certificate identifier is used to cover changes in the name of individuals.

IIS 7 How do I map a client certificate to a user account in a database?

More articles: