Client / User certificate based authentication process / steps on UAG RRS feed

  • Question

  • Can anyone send me step by step guidelines on how to setup client/user certificate based authentication on UAG and User browser. We have application for I-Phone and wanted to use client / user certificate to authenticate with UAG to use application on I-Phone.  I don’t want to use form based login id password.


    Thanks for your response.

    Tuesday, May 31, 2011 3:08 AM

All replies

  • H Raghbir,

    Take a look at http://technet.microsoft.com/en-us/library/ee861163.aspx for instructions on how to add certificate based authentication to a trunk

     I would also recommend reading through http://technet.microsoft.com/en-us/library/ee690451.aspx for some info regarding how the actual authentication is done.
    (If you need to debug/troubleshoot during the setup)

    Best wishes,
    Jonas Blom

    Tuesday, May 31, 2011 5:40 AM
  • I follows the instruction. However I get the following error.

    "User Validation Error"

    "The user cannot be authenticated"


    Any suggestion please.


    Wednesday, June 1, 2011 1:22 AM
  • Could you solve the problem in the meantime? I have got the same error.

    UAG Eventlog says: "... error code is The user [Arch Stanton] information [SubjectEMAIL] is not [arch@adatum.com]"

    I enrolled the default user template. The certificate's subject is:

    E = arch@adatum.com

    CN = Arch Stanton

    OU = IT

    DC = Adatum

    DC = com





    Sunday, June 12, 2011 8:30 AM