WebDav fails with client certficates on Windows 7
I have a SharePoint 2007 site on Windows Server 2003 R2 that is set up to require SSL/HTTPS and client certificates on the IIs Web App.
Opening Document Libraries in Windows Explorer works fine from Windows XP IE6 clients. However, from Windows 7 (64bit) IE8 I get this generic, well known, error:
Your client does not support opening this list with Windows Explorer.
Turning off the client certificiate requirement (but still requiring SSL/HTTP) makes it work, so it's not really related to SSL/HTTPS nor is it something fundamental missing in regards of WebDav support. However, I do need client certificates.
Any ideas?My blog: InsomniacGeek.com
April 28th, 2011 8:03am
Sometimes IE8 needs to add your site in trusted zone to enable ActiveX and scripts to run correctly, if it does not run then Sharepoint libraries are not allowed to be opend as it is using activex control internally.
so just try to add your site in trusted sites and let us know.Regards, Vikas Patel
Decos Software Development Pvt. Ltd. (An ISO 9001:2008 Company)
www.decos.in | www.decos.com
Free Windows Admin Tool Kit Click here and download it now
April 28th, 2011 9:52am
Hi Magnus,
Unsigned certificate is not accepted in Win 7. Please try to fill out the form in
http://localhost/certsrv > Request a Certificate > Advance certificate > Create and submit a request to this CA,
then try again.
I suggest you give a new thread to
windows 7 forum, so that more solutions could be provided.
Best regards,
Emir
May 2nd, 2011 7:03am
The problem is now identified as related to the Schannel Secure Channel security package in an enterprise scenario with more than one smart card.
Whenever two smart cards (or two certificate providers) are used, the Schannel fails with the following error:
A fatal error occurred when attempting to access the SSL client credential private key.
The error code returned from the cryptographic module is 0x8009030d. The internal error state is 10003.
And that results in the generic error on the client side.
Regards,
MagnusMy blog: InsomniacGeek.com
Free Windows Admin Tool Kit Click here and download it now
May 2nd, 2011 8:36am
Sometimes IE8 needs to add your site in trusted zone to enable ActiveX and scripts to run correctly,
Thanks, but as I mentioned in the question, it works fine without client certificate requirement and thus is not a zone related issue. (See my reply for the cuase)
My blog: InsomniacGeek.com
May 2nd, 2011 8:38am
Unsigned certificate is not accepted in Win 7. Please try to fill out the
Thanks, but there is no unsigned certificates involved in this scenario. (See my reply for the cause of the problem)
/M
My blog: InsomniacGeek.com
Free Windows Admin Tool Kit Click here and download it now
May 2nd, 2011 8:47am