This is a windows .NET application. Am working on the client side. Increased SSChannel logging and discovered ... .
Creating a TLS client credential.The remote server has requested TLS client authentication, but no suitable client certificate could be found. An anonymous connection will be attempted.This TLS connection request may succeed or fail, depending on the server's policy settings.A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.The cert is in the Cert Store, but it's loaded in the application. Also, the Extended Key Usage appears correct.
- Client Authentication (1.3.6.1.5.5.7.3.2)
- Secure Email (1.3.6.1.5.5.7.3.4)
No clue why the client side cannot find the cert and not sure what else to check for. The cert if from DigiCert and the intermediate and root certs are in place as well.