Use this tab to edit one-to-one mappings. One-to-one mappings require the Web server to have access to a text (ASCII) copy of the user's client certificate. The Web server compares the copy of the client certificate it holds with the client certificate sent by the browser. For the mapping to proceed, the two must be absolutely identical. If a client gets another certificate containing all of the same user information, it must be mapped again. To map multiple certificates to a single account, you must define a one-to-one mapping for each client certificate.
Click to edit the currently selected mapping.
Click to map a client certificate to a Windows user account.
Click to delete the currently selected mapping you created, and not the client certificate.
To learn more about certificate mapping and certificates, see the IIS 6.0 online documentation on the Microsoft Windows Server TechCenter.