Web Analytics

Enabling an Access Password for Client Authentication Certificates

This guide shows how to install a Client Authentication certificate in the Windows certificate store and generate an access password for the certificate. Normally a user can gain entry to a restricted website as long as the Client Auth certificate that is authorized for use in the site matches the one that is installed in the Windows certificate store. To further increase security, an access password can be generated for the certificate. Enabling this option will require users to provide both the correct certificate and a password every time they try to enter the restricted site.     

Adding an access password is particularly beneficial in environments where multiple users operate on the same system or where sensitive information is at stake. By requiring the password each time the certificate is used, this method aligns with best practices for secure authentication, ensuring that only authorized users can access restricted resources and reducing the risk of credential misuse.

Import the Certificate to the Windows Certificate Store

  1. Double-click the downloaded certificate.
  2. On the Certificate Import Wizard, choose Current User
  3. Confirm the file you want to import and then click the Next button. 
  4. Enter the password you generated for your certificate when you downloaded it. After this, check the box for this option under the  Import options section.: Enable strong private key protection. You will be prompted every time the private key is used by an application if you enable this option. Take note that this is not yet the access password but rather the installation password. Clicking this option will require a password every time you install it in other certificate stores like those in browsers or applications.  

    Click the Next button to proceed.

  5. Select the folder where you want to store the certificate. The Personal folder is a recommended location. Click the Next button afterwards. 

  6. Click the Finish button.
  7. After clicking the Finish button, a new window will appear. This stage is when you can now generate an access password for the certificate. Click Set Security Level…

  8. Click the radio button for High: Request my permission with a password when this item is to be used. After this, click the Next > button.

  9. Generate the access password, confirm it, and then click the Finish button.

  10. Click the OK button.

  11. Success! The certificate is now imported to your computer’s store and a password has been generated for its use in accessing a restricted site. The next section shows how to use an access password-enabled Client Auth certificate on a browser.

Use the Client Authentication Certificate

  1. If the cert is successfully installed in your machine’s certificate store with an access password enabled, the restricted website will prompt you for the password to the certificate. Enter the access password and then Click the Allow button.
  2. Success! You are now able to enter the restricted website.
Was this article helpful?
YesNo

SSL Support Team

All Posts

Related How Tos

View All How Tos
Facebook Twitter Youtube Github

Subscribe to SSL.com’s Newsletter

What is SSL/TLS?

Play Video

Subscribe To SSL.com’s Newsletter

Don’t miss new articles and updates from SSL.com

Stay Informed and Secure

SSL.com is a global leader in cybersecurity, PKI and digital certificates. Sign up to receive the latest industry news, tips, and product announcements from SSL.com and stay informed of the latest changes about digital identity and encryption that can impact and enhance your life.

We’d love your feedback

Take our survey and let us know your thoughts on your recent purchase.

Take Survey