Forum Discussion
Valid Client Certificate Setup
How do you get valid client certificate to work? What i have so far. 1. CA with Intermediate, User Certificate Template cloned for this purpose 2. Issued a cert to my domain desktop and IOS devi...
rodrigobe are you importing the cert on the client in the current user's personal store? that's where the cert needs to be on the machine and it also needs to have a private key. Once you have configured a session/access policy to check for a valid client cert, you should be prompted to select one from this store when you browse to app you configured in the policy
Thank you for your reply!
I was trying to use a certificate in local machine, not in the current user. Now I changed the CA certificate for the one that I have on my current user and it's working!
Thanks again.
I was trying to use a certificate in local machine, not in the current user. Now I changed the CA certificate for the one that I have on my current user and it's working!
Thanks again.
thats a great find. and a cert location we rarely use.
i need to re-test now.
my second pain point with conditional access was getting it to work with native apps on mobile/IOS.
you seemed to be at the mercy of the app developer to support certificates.
- unfortunately that's correct. some apps are just not designed to honor a cert check. no way to control their access with cert based identification.
