This procedure assumes that your site has already has a certificate assigned to it.
- Log on to the Web server computer as an administrator.
- Click Start , point to Settings , and then click Control Panel .
- Double-click Administrative Tools , and then double click Internet Services Manager .
- Select the Web site from the list of different served sites in the left pane.
- Right-click the Web site, folder, or file for which you want to configure SSL communication, and then click Properties .
- Click the Directory Security tab.
- Click Edit .
- Click Require secure-channel (SSL) if you want the Web site, folder, or file to require SSL communications.
- Click Require 128-bit encryption to configure 128-bit (instead of 40-bit) encryption support.
- To allow users to connect without supplying their own certificate, click Ignore client certificates .
Alternatively, to allow a user to supply their own certificate, use Accept client certificates . - To configure client mapping, click Enable client certificate mapping , and then click Edit to map client certificates to users.
If you configure this functionality, you can map client certificates to individual users in Active Directory. You can use this functionality to automatically identify a user according to the certificate they supplied when they access the Web site. You can map users to certificates on a one-to-one basis (one certificate identifies one user) or you can map many certificates to one user (a list of certificates is matched against a specific user according to specific rules. The first valid match becomes the mapping). - Click OK .