Twardone45
asked on
Understanding Mutual SSL
I strong apologizes if this question has been answered some where on the site. I'm not sure how to phrase the keywords to find it.
Okay, I've read many sites on how to setup Mutual SSL on IIS6 or II7.
I think I understand how to do that but what I want to do is:
1) Control Access to the site using Mutual SSL
2) Once the user is on the site control what pages or items are displayed based on "WHO" the individual is.
Basically, once you certificate has been authentcated. I only want the user to see the parts or items on the page that pertain to his/her role or identity.
I haven't found any sites that go that next step to show how to control or use the items in the certificate.
Any help or suggestions are appreciated.
Okay, I've read many sites on how to setup Mutual SSL on IIS6 or II7.
I think I understand how to do that but what I want to do is:
1) Control Access to the site using Mutual SSL
2) Once the user is on the site control what pages or items are displayed based on "WHO" the individual is.
Basically, once you certificate has been authentcated. I only want the user to see the parts or items on the page that pertain to his/her role or identity.
I haven't found any sites that go that next step to show how to control or use the items in the certificate.
Any help or suggestions are appreciated.
ASKER
I believe I understand your comment but would you know of a site or something that I can look at that is close to what I am looking for?
Even a site that shows me how to pull the cert apart and then I can go from there.
Thanks,
Even a site that shows me how to pull the cert apart and then I can go from there.
Thanks,
http://www.codeproject.com/Articles/326574/An-Introduction-to-Mutual-SSL-Authentication
mutual ssl allows the user to access the site
use a login page so the user can login
use your normal security to limit access to areas of the site
mutual ssl allows the user to access the site
use a login page so the user can login
use your normal security to limit access to areas of the site
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you for the help and direction.
many alluded this to app aware filter with contextual info such as the user id as well. NGFW like Palo Alto does that, BlueCoat goes into the appl micro filtering and some with SSL VPN gateway managing certain resource accessible in portal format (not really down to web page widget though)....