Editing Existing Wildcard Rules for Client Certificate Mapping

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1

Use the following procedure to edit existing wildcard rules for client certificate mapping.

Important

You must be a member of the Administrators group on the local computer to perform the following procedure or procedures. As a security best practice, log on to your computer by using an account that is not in the Administrators group, and then use the runas command to run IIS Manager as an administrator. At a command prompt, type runas /User:Administrative_AccountName "mmc %systemroot%\system32\inetsrv\iis.msc".

Procedures

To edit an existing wildcard rule for client certificate mapping

1. In IIS Manager, expand the local computer, and then expand the Web Sites folder.

2. Right-click the Web site that you want to configure authentication for, and then click Properties.

3. Click the Directory Security tab, and then in the Secure Communications section, click Edit.

4. In the Secure Communications box, select the Enable client certificate mapping check box, and then click Edit.

5. In the Account Mappings box, click the Many-to-1 tab.

6. On the Many-to-1 tab, in the list of rules, click the rule that you want to modify, and then click Edit Rule.

7. Make the necessary changes, and when you are finished editing the rule, click OK.

Related Information

• For information about how to map a specific client certificate to a user account, see Mapping Client Certificates One-to-One.

• For information about mapping a client certificate to an Active Directory user account, see Mapping Client Certificates with Directory Service Mapping.

• For information about when to use each type of client certificate mapping, see Mapping Strategies.

• For general information about certificates, see SSL and Certificates.