Hi!
I'm about to host a IIS 6.0 web site which is to be access controled by user certificates, ie. you need a valid user/client certificate to view the webpage.
In IIS 6.0 I want to use the setting "require user certificate".
However, the Certificate Authority admin wants to be able to revoke certificates/users to be in control of what users can access the webpage, say a employee quits the company, then his user/client certificate will be revoked.
I've read some about CRL's (Certificate Revocation Lists) wich CA admin publishes, but importing them and using them in IIS 6.0 seems to be the harder part to understand.
To me it all turns back to metabase changes (code in the web page...?) and there I'm lost.
Is there just not an easy way to just import the CRL on the machine that hosts IIS to be used?
Thanx for any input!
I'm about to host a IIS 6.0 web site which is to be access controled by user certificates, ie. you need a valid user/client certificate to view the webpage.
In IIS 6.0 I want to use the setting "require user certificate".
However, the Certificate Authority admin wants to be able to revoke certificates/users to be in control of what users can access the webpage, say a employee quits the company, then his user/client certificate will be revoked.
I've read some about CRL's (Certificate Revocation Lists) wich CA admin publishes, but importing them and using them in IIS 6.0 seems to be the harder part to understand.
To me it all turns back to metabase changes (code in the web page...?) and there I'm lost.
Is there just not an easy way to just import the CRL on the machine that hosts IIS to be used?
Thanx for any input!
