Mapping Clients

Setting up a Client Certificate Mapping – Digi-Access™ User on IIS 5.x+

Once the Windows User Account (from section 3.1) is present, you may move to the final step of this document where you setup a Digi-Access™ user. Before you do this, make sure that you have the following items available:

• Windows User account password
• Digi-Access™ [1] Certificate (with public key) file that will match the Windows User Account.

The file should be previously saved on the Windows server as described at the beginning of section 3.
To complete the setup of a Digi-Access™ user:

• Go to Windows Administrative Tools.
• Start Internet Services Manager.









• Open the properties window for the website that you have enabled SSL on. You can do this by right clicking on the Default Website and selecting Properties from the menu.









• Open Directory Security by right clicking on the Directory Security tab.
• Click Edit in Secure communications section.
• A Secure Communications window will appear.









• Click Edit in the Enable client certificate [2] mapping section.
• An Account Mappings window will appear.









• Ensure you are working on 1-to-1 tab.
• Click Add and browse for the Digi-Access™ user’s certificate file.
• Once the file is located click Open.
• A Map to Account window will appear.









• Ensure that Enable this mapping option is enabled.
• Provide Map Name, for example user's first and last name.
• Browse for and select the Windows User Account, which was created in section 3.1. of this document.
• Provide the Password that was created for the Windows User Account in section 3.1. of this document.
• Click OK.
• Confirm the Password and click OK.
• A new mapping should appear in Account Mappings window.
• Click OK to close the Account Mappings window.
• Click OK to close the Secure Communications window.
• Click OK to close the web site properties window.

The Digi-Access™ user setup is now completed. The user may now connect to your
Digi-Access™ protected web site using your web site URL with the https:// phrase typed before the web site name.

Once connected to the site, user will be asked for a Digi-Access™ Client Certificate and if the Digi-Access™ Certificate is present on the user’s machine, access to the web site will be granted, otherwise the user will be not allowed to enter your web site.

For any technical information which is not included in this document, or for further technical support, contact our Support Department by email at support@digi-sign.com [3] or by telephone: +353-1-410-0701.

Thank you for your Custom!

Digi-Sign Technical Department
E: support@digi-sign.com [3]
W: http://www.digi-sign.com [4]
T: +48 22 789 64 92
F: +48 22 789 64 91