.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
david stephan
Gaurav Pal
Post New Web Links

SP2010 SSL Crawl Fails - Accessing this site requires a client certificate.

Posted By:      Posted Date: October 27, 2010    Points: 0   Category :SharePoint

Full error Message:  Accessing this site requires a client certificate. Specify a client certificate in the crawl rules.

I added the Crawl Rule and Content Source for the test site https://sp.xxxx.com/TestSite and tried specifying each available client certificates in the rules one by one, but the crawl still fails.





What kind of certificate does it needs and how to enable it? I know that the *.xxxx.com certificate is used for our SSL.


View Complete Post

More Related Resource Links

Client certificate validation fails in TransportWithMessageCredential


We have a windows client connecting to a Windows service calling a WCF Service. We need client certificate validation along with client username/password validation. However setting sbe.RequireClientCertificate = true; in the service gives a connection timeout error and by not setting it, the custom certificate validator is not called.  Also if code to assign certificate in client logic is commented there is no exception thrown. I need a validation for certificate as well as message (UserName/Password). Can you please help? I am attaching the code below:

Service code:


 WCFSettings settings = new WCFSettings();



                    _serviceHost = new ServiceHost((typeof(GDService)));

                    EndpointAddress epAddr = new EndpointAddress(settings.EndpointAddress);



Need help creating Secure Site that will require client certificate



I am trying to create a secure web service that will require certificate from clients. I'm not working with WCF, just a web service. This is what I did so far:

On the default web site, where I have other web sites that are not secured, I've configured one of the virtual directories in the following way: Directoy Security->Secure Communication -> Edit I've Tagged Require SSL, and Require client certificate. Then, I've created a Many to One Mapping rule that maps a certificate, by CN to a certain user account.

When I try to access the web site, with a client application (https://SERVERNAME/VIRTUALDIRECTORY/ASMXFILE.asmx) I get the following message :

"Unable to connect to the remote server"

Ofcourse I send a proper certificate.

What am I doing wrong?


Sharepoint site client access denied


I have an sharepoint application which was working fine.

I encountered a license expired message in sql server enterprise evaluation 2008 version after which i changed the date to 2 months earlier date, I have also changed HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft SQL Server\100\ConfigurationState to 3 after which sql server started working but the issue is that the clients are unable to access the sharepoint site completely. On providing the url the web site requests for logon information and then access is denied. The same url with the same authentication credentials is accessible from the server and the entire application works fine from the server. 

From the  client the below error page appears.

You are not authorized to view this page

You do not have permission to view this directory or page using the credentials that you supplied.

Please try the following:

  • Contact the Web site administrator if you believe you should be able to view this directory or page.
  • Click the Refresh button to try again with different credentials.

HTTP Error 401.1 - Unauthorized: Access is denied due to invalid credentials.
Internet Information Services (IIS)


Module 5: Accessing SharePoint 2010 Data with Client-Side APIs

SharePoint 2010 provides a new client object model that enables you to create SharePoint solutions that run remotely from the SharePoint server farm.

Only crawl one site collection

Hi We have an intranet with about 100 site collections. How can I set up one of those to be in a separate content source that can be crawled more often? Do I need to make two content sources with one containing the other 99 site collections with the setting "Crawl only the SharePoint Site of each start address" and the other one containg my prioritized site collection with the same setting? I also would like to ask if the crawl rules have any effect on in which order the content is crawled. If I put a certain site to be included with order 1 will that site always be crawled first? //Niclas

sslstream client certificate validation error

Hi,I have taken server and client program from MSDN2 for sslstream. in that code client certifiacte authetication is made false  i want to enable that and do the code i have done some modification to the code but is giving error "RemoteCertificateNotAvailable" and i think that its not getting the client certificate at server side.So please can any one help me to do client server program using sslstream in which client certificate also needs to be validated.I am attaching my modified code of MSDN2Server sideusing System;using System.Collections;using System.Net;using System.Net.Sockets;using System.Net.Security;using System.Security.Authentication;using System.Text;using System.Security.Cryptography.X509Certificates;using System.IO;namespace Examples.System.Net{    public sealed class SslTcpServer     {        static X509Certificate serverCertificate = null;        // The certificate parameter specifies the name of the file         // containing the machine certificate.        // The following method is invoked by the RemoteCertificateValidationDelegate.        public static bool ValidateClientCertificate(              object sender,              X509Certificate certificate,              X509Chain chain,              SslPolicyErrors sslPolicyErrors)        {            SslPolicyErrors errors = sslPolicyErrors;            if (errors != SslPolicyErrors.None)            {

C# - Creating web client for automating user activity on a HTTPS site

I've been wracking my brain for a couple of weeks on this.  I need to create a web client (I don't want to use the webBrowser control because I need this to be as lightweight as possible) to log in to a secure web site, and then effectively click links and fill in fields to get the data that would normally be displayed in the web browser.  I'm then going to parse the data and perform other actions with it. I have been working with HttpWebRequest and HttpWebResponse and many permutations of suggestions I have found while Googling my issue, but I can't get rid of my problem:  Sometimes when I effictively click the ultimate link that I need to click to get to my data, I get what I am looking for.  However, MOST of the timel, I get a response page that tells me my connection timed out and that I need to log in again.  I have tried messing with cookies and such, but to no avail. I know it's good form to post my code, but it is so sloppy and screwed up right now from tweaking this and trying that, that I'd rather not take the approach of fixing what's there, rather I'd like to start with solid, clean code to begin with. Your help will be greatly appreciated. Thanks, ALo

connect client certificate to an account in a membership database

Hello I have created a web service that authenticates with username and password, works fine.Basically this one, http://msdn.microsoft.com/en-us/library/ff649647.aspxNow I also want to connect to this web service using client certificates, works finehttp://msdn.microsoft.com/en-us/library/cc948997.aspx But I would like to when authenticated via client certificates, connect that certificate to a user in the membership database.So that I can use Roles.IsUserInRole(...) and such.I thought that, well if I implement a Custom certificate Validatorhttp://msdn.microsoft.com/en-us/library/ms733806.aspxthen I could check for example subject and map that against a created username in the membership database.But in the class X509CertificateValidatorpublic override void Validate(X509Certificate2 certificate)I don't have the same ability as when the user is authenticatedlike  void OnAuthenticateRequest(object source, EventArgs eventArgs)HttpApplication app = (HttpApplication)source;Basically how can I do this app.Context.User = new GenericPrincipal(new GenericIdentity(username, "Membership Provider"),roles);withinpublic override void Validate(X509Certificate2 certificate)and if that is not possible, can this be solved differently?Bottom line, how do I connect a client certificate to a user account in the membership database. Is there a MSDN article

The SMTP server requires a secure connection or the client was not authenticated.........

i am using asp.net & have a emailing modulewhen i use gmail host i amable 2 send the mail but when i am using yahoo host i get  error msgthe yahoo id & password are right  but still getting the below msg ---------------------------Windows Internet Explorer---------------------------  ' The SMTP server requires a secure connection or the client was not authenticated. Authentication Required. '   ---------------------------OK   ---------------------------

Getting client information from X.509 certificate in C# code

I have a WCF service which accepts X.509 certificate signed incoming messages. As per my understanding the client will send the message with signature encrypted using his private key and web services will decrypt the signature with client's public key. This ensures that the sender of the message is holder of the private key and that he is certified by the server trusted CA as "He is what he claims to be". It's being a highly secure application I need to give access to only certain clients regardless of whether they are trusted or not. (This is to take care of good turned bad scenario :-)) How do I achieve this? Is there any way to get the client information as subject name etc from his certificate in C# code? Is there any example of this usage? Thanks in advance,Jeet.    

SP2010 Client Object Model: How to cast Field to FieldCalculated

Hello, I need to modify formula for existing field and can't do it because this code raise exception - (Cannot cast 'fld' (which has an actual type of 'Microsoft.SharePoint.Client.Field') to 'Microsoft.SharePoint.Client.FieldCalculated').   using (var clientContext = new ClientContext(@"http://Server")) { var web = clientContext.Web; var lst = web.Lists.GetByTitle("MyList"); <strong>var fld = (FieldCalculated)lst.Fields.GetByInternalNameOrTitle("Formula1");</strong> clientContext.Load(fld); clientContext.ExecuteQuery(); }   I can't use fld.SchemaXml modification by some reason. May be you can help me? Thank you.

Cannot crawl sharepoint site and mysite after database attach upgrade form sharepoint 2007 to 2010.

After database attach upgrade site and mysite from sharepoint 2007 to 2010 , I have full crawl and get "The crawler could not communicate with the server. Check that the server is available and that the firewall access is configured correctly. If the repository was temporarily unavailable, an incremental crawl will fix this error. ( Error from SharePoint site: HttpStatusCode ServiceUnavailable The request failed with HTTP status 503: Service Unavailable. )" for mysite and get "Access is denied. Verify that either the Default Content Access Account has access to this repository, or add a crawl rule to crawl this repository. If the repository being crawled is a SharePoint repository, verify that the account you are using has "Full Read" permissions on the SharePoint Web Application being crawled." for sharepoint site. The content access account for search is "db_owner" of both of site and mysite. How do I solved this problem ?

Using Outlook as Client for WSS Site

We have a WSS Project Management site on one of our servers. We are trying to give our users access to forms showing them the status of their requests and a form to allow them to add projects through Outlook 2007 which runs on Exchange 2003. We found a post on how to add a new folder item in Outlook and set the Home Page as the sharepoint URL for application pages (web part pages created through WSS). This works very well, except where you try and use a Person Lookup button or edit the properties of a document in a document list. I have noticed that the address box in Outlook shows "Outlook:ITInformation\My Live Projects". If you click on one of the Sharepoint Quick Menu or Top Menu items that appear Outlook Window, the address box changes to http:// address of the page on the Sharepoint and buttons and menus work. I am trying to create a focused version for our users rather than them have to work their way through the whole site to get to the information relevant to them. I have searched the web for information on this, but I have now reached a brickwall. Can anyone help?

sp2010 - move site template ( or site ) from one site collection to another ?

Is it possible to save a site as a template in site collection A and move it to site collection B ? Can this be done using out of the box functionality through the browser or do I need to use powershell or some other tool ? please advise. thanks and regards, Counie  

Why saving to SharePoint library fails from Office 2007 client?

I have test environment where I have successfully able to create Excel document with the client and publish it to the SharePoint 2010 sites. In the test environment I was using my personal Windows 7 workstations for Office 2007. When I repeat process in the customer environment, it fails. I'm using front-end Windows Server 2008 machine for Office 2007. I'm using admin account and machine is certaily in the domain. 1. Open Excel 2007 and modify it 2. Publish 3. Document Publish Server 4. Input http://intra I get error: This location cannot open with program Why the error? What do I miss? Is the Windows Server 2008 the problem?Kenny_I

C# Client App connecting to WSS3.0 with X.509 certificate

I have been unable to find much information on using smart cards and X.509 certificates when connecting to WSS 3.0.  I am able to build a Web Service Reference in VS 2010 just fine.  I get prompted for my cert, I select it, enter my pin and all is well.  But I am failing to handle it properly in my app.  I created a test method that creates the new WSS List object.  I assign System.Net.Credentials.DefaultCredentials to the Credentials. I then call GetListCollection.  I am never prompted for my cert, and I get a 500 error back from the server.  Everything works fine in IE and adding the reference so I think I missed a step, but I cannot figure out what that would be. I running the app with an account that has no relationship to the authentication domain WSS is part of, so I expected to be prompted for the cert when I tried to connect. Does anyone know how to do this, or offer up some guidance.  Thanks, LD

SP2010 - move libraries from a site in one site collection to a site on a different site collection

can this be done simply through 1) opening sitecollectionA.siteA in windows explorer 2) opening sitecollectionB.siteA in windows explorer 3) copying library in 1) to location in 2) Is this best practice or is there an OOTB option to achieve this ? could SharePoint WorkSpace be used ? thanks and regards, Counie
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend