Solved

How to set up Mutual Authentication with IIS and a normal website.

Posted on 2006-07-03
8
1,898 Views
Last Modified: 2010-08-05
Hi,

I am not really sure how to go about this. We have just been approached by a large financial corporate, wanting to use our website.
They have all sorts of requirements we have to conform to first however, one of them is to do with security.

All of their users are behind some type of firewall/proxy, and they want this thing to have to mutually authenticate with our website. Our website is a normal type of website, it has an SSL certificate and people log in with usernames and passwords. Clients can either enforce the SSL on their group of users, or it is optional.

The site is hosted on a Windows 2000 Server IIS5.0 installation.

They have said they would give me their certificate, and we give them ours. I think this will probably affect existing customers, so we need a new website in IIS pointing to the same folder, with a new certificate. Not sure how to go about it after that.

Can someone please explain to me in laymans terms what they are trying to do, if it will affect existing customers, and how I do it.  I would appreciate it greatly. This question is urgent for us as we need to get up tp speed on this so we can discuss with them by end of week.
0
Comment
Question by:miken05
  • 4
  • 3
8 Comments
 
LVL 30

Expert Comment

by:ded9
ID: 17035415
0
 

Author Comment

by:miken05
ID: 17039225
Those are more the theory behind it.
I am hoping for some more direct answers if possible. Thanks for your input though.
0
 
LVL 30

Accepted Solution

by:
ded9 earned 500 total points
ID: 17040471
0
Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

 

Author Comment

by:miken05
ID: 17077546
Thanks I guess that's as good an answer as I'm going to get!
0
 
LVL 30

Expert Comment

by:ded9
ID: 17078726
Did the pdf help you. If it did help you in anyway why lower grade.
0
 

Author Comment

by:miken05
ID: 17078751
I don't mean it as an insult, C is for average and I thought that sending me a pdf of a companies explanation for NT & IIS4 setup was average. It did help as it showed me the place to look for ticking the boxes, but does not fully answer the questions I posted, which was why I graded it like that.
I thought getting all the points was the main thing? If it was no good I wouldn't have accepted.
So thanks I appreciate it and will have to set up some test labs to see if it will work with existing customers and is exactly the same for the Win2K + IIS5 hosted app:)
0
 
LVL 30

Expert Comment

by:ded9
ID: 17080613
Something is better than nothing .

If other expert has provided you with the best answer then sure you should not grade me.
But I have tried my level best with providing with at least a small answer.

Also getting points is not the only thing, if you are not satisfied with my answer then you can request the admin of this page to refund your points.

Grades are  close to heart topic in E.E. If you are not satisfied then you can refund your points.


Ded9
0
 

Expert Comment

by:Vibhug
ID: 30604367
The link below is not opening up.
http://www.certipost.be/download/trust/Configuring_IIS4_for_mutual_Authentication.pdf.

Please let me know the solution.
0

Featured Post

Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Ransomware continues to grow in reach and sophistication, putting data everywhere at risk. Learn how to avoid being caught in its sinister clutches with these 11 key tips.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question