Requing client certificates on the web server allows any client with
certificate to make a call to web server. How can I configure IIS6 to accept
only a handful of client certificates and silently drop others?

Thanks.
Raghu/..

No configuration in IIS to do this. You will have to add the logic yourself
after IIS6 accepts the SSL connection with the client certificate.

--
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//
[quoted text, click to view]
Requing client certificates on the web server allows any client with
certificate to make a call to web server. How can I configure IIS6 to accept
only a handful of client certificates and silently drop others?

Thanks.
Raghu/..

David,

Can you provide pseudo logic to do this?

Thanks.


[quoted text, click to view]

The answers are all in my blog.
1. Take any of the ISAPI Filter samples on my blog's "Code" section as base.
2. Read my GetServerVariable blog entry to locate the necessary server
variable to identify the necessary data from the client-certificate fields.
3. See the correct way to call GetServerVariable from the same blog entry of
#2
4. Using #1, #2, and #3, assemble your pseudo logic and compile your own
custom ISAPI Filter to do what you want
5. Read my blog entry on how to troubleshoot ISAPI Filter loading if you
have troubles installing.

--
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//
[quoted text, click to view]
David,

Can you provide pseudo logic to do this?

Thanks.


[quoted text, click to view]