Identityserver4: Where can i find a sample that uses mTLS?

Created on 9 Oct 2020 · 5Comments · Source: IdentityServer/IdentityServer4

Trying to get mTLS to work reliable with IIS and Identity Server 4.1 but no luck. I have looked through the documentation at http://docs.identityserver.io/en/latest/topics/mtls.html but find it a bit incoherent (at least to me). Is there an actual complete sample that I can run as a PoC to make sure the problems are actually in my code/config? Could not find one among the normal samples / quick starts.

Having googled a bit, my impression is that mTLS overall with IIS seems a bit immature and there are very few successful tutorials, samples etc. that I have been able to find. This could in part be due to the fact that IIS and latest asp.net core does not seem to play nice always, especially if you try stuff like debugging from Visual Studio etc. As I understand it, Kestrel is still lacking some features that makes it be able to replace IIS in this scenario. Could it be worth considering NGINX even in a 100% Windows based solution?

question

Source

improwise

All 5 comments

I used nginx - not IIS.

Here's the client
https://github.com/IdentityServer/IdentityServer4/tree/main/samples/Clients/src/ConsoleMTLSClient

leastprivilege on 9 Oct 2020

👍1

Thank you. Not sure how I managed to miss that sample.

I read your blog about having some problems getting mTLS to work well with IIS, if I recall correctly, that was from early 2020, would you still say that NGNIX is a better way to get this working properly than IIS?

Edit: Link to the blog post https://leastprivilege.com/2020/02/07/mutual-tls-and-proof-of-possession-access-tokens-part-1-setup/

improwise on 9 Oct 2020

forget IIS.

leastprivilege on 9 Oct 2020

👍1

Thank you.

improwise on 9 Oct 2020

This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.