I had a problem with client side certificates in MS Edge browser, in window 10. Basically my PKI structure looks like this:
RootCA (self-signed 4096) โ Intermediate CA (signed by RootCA 2048) โ One server certificate, one client certificate (both signed by an intermediate CA)
Configure Apache with the following SSL options
SSLCertificateFile - cert generated by Intermediate CA 2048 SSLCertificateKeyFile - keyfile of above cert SSLCACertificateFile - Cert of my Intermediate CA chained with RootCA cert SSLCARevocationFile - Crl list generated by Intermediate CA SSLVerifyClient require SSLVerifyDepth 10 SSLOptions +StdEnvVars
Client certificate generated as PKCS # 12 chain file.
Now, tested with Firefox, Chrome and Internet Explorer 11, and everything works as expected - without a certificate you get page 403, and when the certificate is imported, you can log in and the certificate is read by a PHP file, which basically displays information collected from using + StdEnvVars.
In Microsoft Edge v25.10586.0.0, when I go to https, I get a certificate selection window, but when I select the appropriate certificate, I still get the 403 error. It drives me crazy, since it works almost everywhere, except the Edge browser. Can anyone give me a hand, at least where to start?
microsoft-edge ssl pki
Kosta
source share