Simplified: How to create an IIS website that requires client certificate using self-signed certificates

Some IE/IIS issues may involve client certificate. It always took me hours to deploy a test website that requires client certificate. Therefore, I am going to write this blog to record every steps including: creating self-signed root CA, server certificate, client certificate and configuring IIS. Prerequisites Domain IIS server iis-lab-serverĀ @ Windows Server 2012 R2 Standard…

Read More

Resolving IIS 403.17 Issues

Windows 2012 introduced stricter certificate store validations. the Trusted Root Certification Authorities (i.e. Root) store can only have certificates that are self-signed. If that store contains non-self-signed certificates, client certificate authentication under IIS returns with a 403.16 error code. To solve the problem, you have to remove all non-self-signed certificates from the root store. This…

Read More

Windows Server 2012 R2 Cannot install KB2919355

Following several unsuccessful attempts to install the Windows Server 2012 R2 Update for x64-based Systems (KB2919355), each of which produced error code 80070002, 1. Verify that Windows Update KB2919442 is installed by examining Control Panel\System and Security\Windows Update\View update history and, if not, download and install it (http://www.microsoft.com/en-us/download/details.aspx?id=42162) 2. Download the Windows Windows Server 2012…

Read More