Configure TLS version on IIS Express
I've got a .Net 6 web api that uses optional certificate authentication. I'm struggling with my debugging setup.
By default, IIS Express doesn't appear to take the client certificate presented, so I edited the applicationhost.config file to include
<access sslFlags="Ssl, SslNegotiateCert" />
This means my testing using powershell to call the API with a client certificate works, however I've now lost the ability to access the Swagger page, getting a ERR_CONNECTION_RESET when try to connect with a browser.
I had a similar issue on IIS (full) and resolved it by disabling HTTP/2 & TLS1.3 - is it possible to configure such a thing in IIS Express?
Well, I managed to figure it out, adapting information from https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/operations/manage-ssl-protocols-in-ad-fs as a reference.
I created the following two keys in the registry
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.3\Server] "Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.3\Server] "DisabledByDefault"=dword:00000001
And after a reboot, I'm able to connect using both certificate auth and my browser :)
- What is the ES6 equivalent of Python 'enumerate' for a sequence?
- Java - creating a new thread
- Error 405 when trying create withdrawal order with okx api
- How do I update the snapshots in my React/TypeScript project?
- fs/promises API in TypeScript is not compiling correctly in JavaScript
- How do browser cookie domains work?
- How can I manually edit the list of recently opened files in VS Code?
- Any way to throttle calls to a specific API in Chrome DevTools while leaving others unthrottled?
- how can i close a Get overlay in flutter?
- How to access data from API Payload
- Spring-Data @Version-Property inspection does not work with primitives for Entity State Detection
- Soong UI permission denied AOSP build
- cocotb: access arrays of instances signals
- Why does TypeScript think my type is possibly undefined?
- Filter includes false is not a function
- Unhashable type in FastAPI request
- Learn Python, exercise 6.7
- JGit - Cannot invoke "org.eclipse.jgit.transport.SshSessionFactory.getSession" because "this.sch" is null
- MongoDB,webflux reactive, Springboot 3.3.4,Java21.0.6,Lombok (superbuilder class abstract of abstract) Hibernate not work mapping rep to obj
- Nest.js is giving cors error even when cors is enabled
- Print all local variables in a shell
- getBoundingClientRect returns an empty object
- How to extract r, g, b, a values from CSS color?
- How to use debug log in golang
- How is pi (π) calculated?
- The "list-style-type" style not working inside a :before pseudo-element in Chrome
- How to install extension from "vscode:extension/<extension name>"
- Android Kotlin AES/GCM Decryption javax.crypto.AEADBadTagException
- Install ruby using rbenv's downloaded file
- SQLAlchemy error: "TypeError: Additional arguments should be named <dialectname>_<argument>, got 'nullable'"