J
Jim
Does anyone know a way of installing personal certificates for use in
Internet Explorer client SSL authentication, where the user in
question has a mandatory or temporary profile?
The problem appears to be related to KB article 265357:
"Certificates and the associated private keys are stored in a
secured location in the user's profile. [...] Windows 2000 will not
allow you to save a private key to a temporary profile because it will
not persist from logon session to logon session."
Can anyone explain the rationale behind this restriction? If a profile
is marked for deletion when the user logs off, why the need to
additionally prevent users from creating key containers for temporary
use?
Is there a way to work around this restriction so that users with a
mandatory or otherwise volatile profile can have access to client
certificate authentication?
Any comments or suggestions would be gratefully received.
Jim
Internet Explorer client SSL authentication, where the user in
question has a mandatory or temporary profile?
The problem appears to be related to KB article 265357:
"Certificates and the associated private keys are stored in a
secured location in the user's profile. [...] Windows 2000 will not
allow you to save a private key to a temporary profile because it will
not persist from logon session to logon session."
Can anyone explain the rationale behind this restriction? If a profile
is marked for deletion when the user logs off, why the need to
additionally prevent users from creating key containers for temporary
use?
Is there a way to work around this restriction so that users with a
mandatory or otherwise volatile profile can have access to client
certificate authentication?
Any comments or suggestions would be gratefully received.
Jim