We have several web sites that are password protected and SSL enabled, but not PKI enabled. A few users from one of our hosted sites state that they are being prompted to provide PKI credentials when trying to access the site. Our server is running Windows 2003. We are ignoring certificates and using basic authentication. The following is the error what the users receive:
HTTP Error 403.7 - Forbidden: SSL client certificate is required
As you probably know, PKI settings are established server-wide and not by individual site. We have over 100 password protected/SSL enabled sites on the same web server. None of the other hosted web sites are experiencing the same problem. Is it same to assume that the problem is not a server issue, but with the users browser or perhaps required by a firewall setting? If so, do you know of a solution?
Any information is greatly appreciated.