I have a web site configured in IIS to Accept, but not require client certificates. When a request is made to our site, I do not see the "Certificate Request" in our after the "Server Hello" in WireShark.
I have even changed the IIS settings of the website to require client certs, but I don't see the certificate request in from the server in wireshark.
I had the same effect after setting up IIS (IIS Express 10.0 in my case) to require client certificates. The "Certificate Request" message from IIS started to appear in Wireshark only after I've configured client certificate negotiation during initial TLS handshake as described in this answer.
... but not require client certificates. ... I do not see the "Certificate Request" i
A Certificate Request is only send if the server requires a certificate for a client, i.e. when you configure the server to require client certificates. Because why should the server request a client certificate if the server does not need it at all?
