Hi guys,
need your help with Exchange CBA. I configured it on windows 2012R2 with Exchange 2013 latest CU (21 or so). It works on Android clients, but not for IOS. IIS throws error 403.7.5. Client is Iphone 8, profile pushed with Apple Configurator 2. Root certificate added on phone and marked as trusted.
I believe problem is with client certificate. I did not find any exact requirements for it. Used default "User" template. Added CRL and AIA.
Subject: User1@user4.zerodemo.website,CN=User1,CN=Users,DC=user4,DC=zerodemo,DC=website
SAN:
Other Name: UPN=User1@user4.zerodemo.website
RFC 822 Name: User1@user4.zerodemo.website
Key usage:
TLS Web Client Authentication (1.3.6.1.5.5.7.3.2)
E-mail Protection (1.3.6.1.5.5.7.3.4)
Encrypted File System (1.3.6.1.4.1.311.10.3.4)
Any help with example of working certificate would be appreciated.
P.S. For now I made another version of certificate with subject CN=User1 but have not tested it yet.