SSL Detect Redirect

SSL Detect Redirect

am 21.12.2006 16:15:43 von Greg

I would like to find a way to detect if our SSL certificate is
installed locally on the clients computer and redirect based on if
it's present or not. We self assign certificates and do not have the
need to buy one. Since the release of IE7, users are now getting the
"There is a problem with this website's security certificate" page
and are not continuing on. We have a way of installing the certificate
through a web page, so I would like a script that would check if the
certificate is installed and sent them to the secure page if not
redirect them to the certificate install page. Does anyone know if this

is possible?

Re: SSL Detect Redirect

am 27.12.2006 16:01:25 von Ken Schaefer

Hi,

There isn't any way of doing this without running code on the client
machine. In that case the user would receive a warning that unsafe code is
wanting to run on their machine. Additionally, since the SSL connection is
negotiated before anything is transferred between the server and the client,
you'd need to send the necessary code to the client over a HTTP connection,
before they users moved over to HTTPS.

Probably better would be to setup your own PKI. You can install your CA's
root signing certificate into the user's Trusted CA store (if you have an
Active Directory integrated CA, then this happens automatically for all
domain machines), and then all certificates you issue will automatically be
trusted by domain-joined machines.

Cheers
Ken

"Greg" wrote in message
news:1166714143.097151.62530@a3g2000cwd.googlegroups.com...
>I would like to find a way to detect if our SSL certificate is
> installed locally on the clients computer and redirect based on if
> it's present or not. We self assign certificates and do not have the
> need to buy one. Since the release of IE7, users are now getting the
> "There is a problem with this website's security certificate" page
> and are not continuing on. We have a way of installing the certificate
> through a web page, so I would like a script that would check if the
> certificate is installed and sent them to the secure page if not
> redirect them to the certificate install page. Does anyone know if this
>
> is possible?
>