Windows 2003 Web Server & IIS 6: Using X509 certificate for XML Post

pts.
Tags:
ASP
JavaScript
Management
Microsoft Windows
OS
Security
Servers
SQL Server
Web development
Web services
Web site design & management
XML
We have a Windows 2003 Web Edition server with IIS 6 running a small site that now has need to perform ServerXMLHTTP posts to a supppier site, via an ASP page with Javascript, that requires X509 certificate authentication. I have followed Microsoft's guide "How to install client certificate on IIS Server for ServerXMLHTTP request object (Q301429)" and using the objects SetOption(3) to point to the certificate store (Personal - this is where the supplied certificate installed itself), I now receive the message "msxml3.dll error '80090325' The certificate chain was issued by an authority that is not trusted. " Viewing the Certification Path in IE/Content/Certificates, it does state that the issuer is unknown. How do we correct this problem? I have 'googled' this to death but nothing seems to affect this issue. The certificate itself work fine when I connect to the site just via IE, it asks me to select the certificate and I can log in. Any ideas? Many thanks...

Answer Wiki

Thanks. We'll let you know when a new response is added.

I am easily confused. WHOSE certificate did you install on your server? Is the error on your end or theirs? And you probably need their certificate in the ‘store’ for the web server, not the personal store of the console login.

Clarify please.

Discuss This Question: 3  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Richcolton
    I believe your problem is that you must install a certificate that has been issued by a trusted CA. There are two formats for supplying a certificate, PCKS#7 and PCKS#11. PCKS#11 includes the certificate of the issuing CA. With PCKS#7 format, you must supply the trusted CA certificate separately. You may be trying to do a self signing certificate but I am not sure that is supported for IIS 6 using XML Post.
    0 pointsBadges:
    report
  • Amigus
    The problem is that the machine doesn't trust the CA that issued the certificate. Obtain the certificate of the CA and install it in the trusted authorities and you're good to go.
    0 pointsBadges:
    report
  • Joco1141
    go to verisign and get a secure site cretificate that is recognized and trusted and then put that in in place of the free certificate you signed up for. Did you get a freebie from Thawte ? It won't work This should correct the problem.
    0 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following