jorge.novo Fri, 11/05/2010 - 06:25

Hi,

  Seems to be that, or also you are not installed the CA in the ACS

CA Certificate

          | ________ Server Certificate

          |______________Client certificate

Ensure that the certificate authority that signed the client's certificate is  correctly installed in the Certificate Authorities page (Users and Identity  Stores: Certificate Authorities). Check the OpenSSLErrorMessage and  OpenSSLErrorStack for more information. If CRL is configured, check the System  Diagnostics for possible CRL downloading faults.

Un Saludo

jedubois Fri, 11/05/2010 - 10:41

You are correct, the ACS doesn't have the CA for the client certificate being presented.  This can be added under Users and Identity Stores -> Certificate Authorties, If it is a multi-tiered CA you can add each certificate in the chain here.

--Jesse

Actions

This Discussion