Mapping Client Certificates One-to-One
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1
One-to-one mapping maps individual client certificates to Windows user accounts. The server compares the copy of the client certificate it holds with the client certificate that is sent by the browser. The two must be identical for the mapping to proceed. If a client gets another certificate containing all of the same user information, it must be mapped again.
This section includes the following information:
Exporting a Client Certificate for One-to-One Mapping: Describes how to export a client certificate so it can be used for IIS one-to-one mapping.
Mapping a Specific Client Certificate to a User Account: Describes how to map a specific client certificate one-to-one to a Windows user account.