- Highlight the API project from Solution Explorer and press F4.
- Set the following properties:
Always Start When Debugging:= trueAnonymous Authentication:= EnabledManaged Pipeline Mode:= IntegratedSSL Enabled:= trueSSL URL:= https://localhost:44300/URL:= https://localhost:60565
By default, the config file will be located at:
- VS2013 :=
C:\Users\<you>\Documents\IISExpress\config - VS2015 :=
$(solutionDir)\.vs\config\applicationhost.config - VS2017 :=
$(solutionDir)\.vs\config\applicationhost.config - VS2019 :=
$(solutionDir)\.vs\{projectName}\config\applicationhost.config
Create a backup of the original file before making modifications.
i.e.config\applicationhost.config.bkup
Locate the access tag and modify the sslFlags attribute to "SslNegotiateCert"
i.e. <access sslFlags="SslNegotiateCert" />
<system.webServer>
<security>
<access sslFlags="SslNegotiateCert"/>
</security>
</system.webServer>
NOTE: Using the SslRequireCert attribute did not provide the CAC prompt
on the USAF environment.
If properly configured, you will be prompted for CAC when making request to port 44300.
- With CAC prompt
https://localhost:44300/- Without CAC prompt
http://localhost:60565/
Continue to the final step of Disabling Client Cert Revocation.