G
Guest
My question has to do with the client portion of the web PKI certificates.
We currently have a server setup to issue client certificates to secure one
of our web based applications. So before the user logs into that web based
application, he/she will have to apply and download a client certificate.
This portion works great. The certificates are installed as NON - EXPORTABLE.
The portion we are having trouble with is that one of our users recently
bought a new computer and she decides to clone the hard drive. Of course
having cloned the hard drive, it also cloned the client certificate and she
is able to just go into the site without getting a new certificate + she is
able to use her old pc to get in.
How can I prevent this from happening. I had thought that a PKI digital
client certificate was issued according to each indivdual PC? How can I
prevent a certificate from being cloned by cloning a hard drive.
We currently have a server setup to issue client certificates to secure one
of our web based applications. So before the user logs into that web based
application, he/she will have to apply and download a client certificate.
This portion works great. The certificates are installed as NON - EXPORTABLE.
The portion we are having trouble with is that one of our users recently
bought a new computer and she decides to clone the hard drive. Of course
having cloned the hard drive, it also cloned the client certificate and she
is able to just go into the site without getting a new certificate + she is
able to use her old pc to get in.
How can I prevent this from happening. I had thought that a PKI digital
client certificate was issued according to each indivdual PC? How can I
prevent a certificate from being cloned by cloning a hard drive.