IIS Server Security, IIS 6 and Installing SSL cert Please help

microsoft.public.inetserver.iis.security - About IIS Web Server Security Issues


IIS Server Security >> IIS 6 and Installing SSL cert Please help

by Nick » Wed, 22 Oct 2003 03:55:02 GMT

I have a windows 2003 standard stand alone webserver
(dedicated) and ordered a ssl cert from thawte which
came as a .txt file, it is saved on the root of the HDD,
i never used the built in wizzard to request the cert. I
followed this article word for word, - and it said it was
successful when i used the wizzards
http://support.microsoft.com/default.aspx?scid=kb;en-
us;816794.
I installed the cert on the root of my website. I have a
directory under it called test on which i checked require
secure channel. (i didnt select this on the root of the
site)

when i try to access my http://www.mydomain.com/test i get
HTTP Error 403.4 - Forbidden: SSL is required to view
this resource.
BUT
when i type https://www.mydomain.com/test i get
Cannot find server or DNS Error

I have telneted into my server on port 443 all OK so it
is not being blocked and i am not using host headers.
Where am i going wrong.

Any help would be very appreciated. Please feel free to e-
mail me.

Thanks

Nick


Top

IIS Server Security >> IIS 6 and Installing SSL cert Please help

by Bernard » Wed, 22 Oct 2003 20:04:58 GMT


Get this tool - SSLdiag and troubleshoot
http://www.microsoft.com/downloads/details.aspx?FamilyID=cabea1d0-5a10-41bc-83d4-06c814265282

--
Regards,
Bernard Cheah
http://support.microsoft.com/
Please respond to newsgroups only ...









Top
Similar Threads

1. Install SSL Cert - NO KEY Manger in IIS 5 

Hello and thanks in advance. I have a W2k/IIS 5 system that has SSL
installed and running fine, I'd like to BACKUP the certificate by making
a*.KEY file, take this server offline and install the the *.KEY file on the
new system. My problem is, this is fine for an NT 4 environment but how do I
do this in IIS 5? I went through the process exporting the certificate
(creating an exported PFX file) and tried installing it on the new server,
but that didn't work (it installed fine), when I went to install/or rather,
assign the cert on the new server - it wasn't there - I had the option to
create a new certificate or restore from a Key file... Please help.

2. IIS 5 How to request new SSL Cert with current Cert in place

3. IIS 5 & Multiple SSL Cert w/ Unique IP's Setup Help 

I have a dedicated Win2K/IIS 5 server with multiple websites.
Everything has been successfully running on a single IP address and 1
site has used a ssl certificate.

I now have 2nd site that needs dedicated ssl. I got the certificate
for the new (site) domain and successfully installed it. I requested
and recieved a second IP address for this domain.

My problem is getting the new domain to properly display in a browser.
example - https://www.2ndDomain.com will show the original
https://www.1stDomain.com site

If I type https://xx.xxx.xxx.xx (the 2ndDomains IP) it works
correctly.

Steps I took:
1) added the new ip address to the NIC
2) changed the host ip in the DNS for the 2ndDomain to the new IP
3) created a reverse lookup zone in DNS for the new IP
4) change the ip address in the 2nd domain's properties in IIS from
"all unassigned" to the new ip address.

Now for the question.

Have I done everything I need to do? (except maybe needing to wait for
the new DNS setting to propogate to the nets DNS severs)

If not does anyone have any suggestions?

I hope this made sense! LOL.


Thanks,

Ty

4. IE has long handshake & always asks to trust SSL cert, even after its installed

5. How to redirect users after installing SSL cert ?

6. SSL Cert install for OWA on MS cluster

7. Cant access sub-directories after installing SSL cert 

My client just installed an SSL cert on IIS 5.0/Windows 2000 server. We can  
access the root directory and default document and all files residing in 
the root just fine via http/https. 

However, when we try to directly address a file in the images directory 
with http or https access directly, we are prompted to authenticate - if we 
cancel we get a 401.3 Access denied by ACL on resource error. If the proper 
credentials are entered, we can access the resource. 
Example: http(s)://www.ourserver.com/images/image_name.gif

When the default document loads from the root directory, it can access the 
images that are stored in the images directly without any prompt to 
authenticate.

I'm thinking this is probably just a simple permissions problem...Does 
anyone have any insight into this?

Thanks,
Justin

8. Install SSL Cert without pending request... - IIS Server Security