2.9 (IIS): Mac browsers asking users for client certificate

2.9 (IIS): Mac browsers asking users for client certificate

by Glenn Pillsbury -
Number of replies: 1

We have just gotten 2.9 running on IIS (Windows Server 2012) with LDAP configured (AD), but Mac users coming from Safari, Chrome, and Opera are being prompted for a client certificate when they attempt to access the login page.  In most cases, no matter what the user selects in the dialog box, access to the page is denied with a 403 - Forbidden error.  The problem does not occur with Firefox, and it does not seem to occur on Windows (no one has reported it so far).  To be clear, this not a problem with the login credentials themselves.  The user isn't even allowed to access the login page because of the certificate issue.

Here's an example, from Safari:

"Cancel" results in a blank white page.

"Continue" (regardless of the choice) results in the 403 error (example from Opera):

Any ideas would greatly appreciated!


Glenn

Average of ratings: -
In reply to Glenn Pillsbury

Re: 2.9 (IIS): Mac browsers asking users for client certificate

by Matteo Scaramuccia -
Picture of Core developers Picture of Peer reviewers Picture of Plugin developers

Hi Glenn,
did you already try to "disable" the client certificate authentication on the IIS side?

HTH,
Matteo

Average of ratings: -