Hi,
Have an app that downloads a small component each time the user attempts a connection. I would like to increase the security on this app by requiring a client certificate - computers so configured can proceed to user authentication (username / password) and then do the download, others are denied before user auth.
Now for what might be the hard part - I need it to be transparent to the end-user (unless the cert check fails of course). I want to avoid the condition where the user has to select an appropriate cert (as they have to do w/ IE when client certs are required); ideally it would be able to identify the valid cert or lack of one and proceed from there.
Any thoughts on how to do this?
Thanks....
Have an app that downloads a small component each time the user attempts a connection. I would like to increase the security on this app by requiring a client certificate - computers so configured can proceed to user authentication (username / password) and then do the download, others are denied before user auth.
Now for what might be the hard part - I need it to be transparent to the end-user (unless the cert check fails of course). I want to avoid the condition where the user has to select an appropriate cert (as they have to do w/ IE when client certs are required); ideally it would be able to identify the valid cert or lack of one and proceed from there.
Any thoughts on how to do this?
Thanks....