How to configure AD server for client TLS authentication

windows-server-2008 active-directory ssl openldap
5,389

I assume that you want to import a certificate from an arbitrary CA. A Windows CA is able to publish certificates directly to an active directory user.

To map a certificate to a user account

  1. Open Active Directory Users and Computers.
  2. On the View menu, select Advanced Features.
  3. In the details pane, click the user account to which you want to map a certificate.
  4. On the Action menu, click Name Mappings.
  5. In the Security Identity Mapping dialog box, on the X.509 Certificates tab, click Add.
  6. Type the name and path of the .cer file that contains the certificate you want to map to this user account, and then click Open.

Confirm that both the Use Issuer for alternate security identity and the Use Subject for alternate security identity check boxes are selected.

http://technet.microsoft.com/en-us/library/cc736781(WS.10).aspx

After this, you should be able to authenticate with the certificate against this user. Your application of course has to support Active Directory Certificate authentication.

Share:
5,389

Related videos on Youtube

gayathri
Author by

gayathri

Updated on September 18, 2022

Comments

  • gayathri
    gayathri over 1 year

    How can I configure my Active Directory LDAP server (Windows 2008) to enable certificate verification and client authentication.

    Thanks, Gayathri

    • MichelZ
      MichelZ almost 12 years
      What PKI Infrastructure do you have? What application do you want to use which does cert auth?
  • gayathri
    gayathri almost 12 years
    For client authentication I have done the below procedure in AD server. Start ->Administrative tool -> Internet Information Services (IIS) Manager ->Connections->authentication -> Active Directory client certificate - authentication -> Enabled. Then also am able to connect to the server without uploading the certificate. Please let me shall i need to ass some more setting to mandate the client authentication in server configuration

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

LDP SSL Port 636 Works - ldaps:// does not
What are the other alternative to test a LDAP connection on linux machine
IIS7 give ApplicationPoolIdentity access to a network location
I need to find out disabled users from ldap
Is there an LDAP standard group membership attribute for users?
Identify and disable weak cipher suites Windows server 2008 / IIS 7
LdapConnection vs. PrincipalContext
Is there any way to query a list of users who can access a VPN connection in Windows Server 2008 R2
Re-add computer to domain without local admin
Windows Server DHCP role not working correctly in VMware Player