Announcement

Collapse
No announcement yet.

Incorrect SecureBindings in IIS 6.0

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Incorrect SecureBindings in IIS 6.0

    Here is the situation:

    I have a Windows 2003 Server installed with IIS 6.0.
    When I enable the "Require SSL" on the Default website, and browse to it with https, I get "The page can not be displayed." When I disable the "Require SSL", and browse to it with http, I can see the website.

    I ran SSL Diagnostics (Tool on the microsoft website), and it says the following:

    #WARNING:AccessSSL = True (resource inaccessible due to SSL does not work on this website)
    #WARNING:Incorrect SecureBindings

    Any thoughts?

  • #2
    Make sure that the virtual webserver is bound to port 443 for HTTPS.

    If it already is, move it to another port apply the change and then move it back to 443.

    Also, remember that SSL will only work on the default webpage - host headers won't work on an encrytped header.
    Andrew

    ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

    Comment


    • #3
      ahinson, thanks for the quick reply.

      I changed the SSL port and try to browse the the site again, but no luck. Changed it back to 443, but still no luck

      Any other suggestions?

      Comment


      • #4
        damned, I forgot to apply the certificate to the website.
        But is that necesarry? If I just require SSL, do I need to supply a certificate?

        Comment


        • #5
          Yes, it needs to have a cert assigned. If not one from a root CA, at least one supplied by your local CA.

          SSL uses encryption, if no cert is supplied it won't know what to use for the encryption key.
          Andrew

          ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

          Comment


          • #6
            I have another question that relates to this subject.

            When you use SelfSSL (command tool from the IIS administrative tools), you can assign a certificate to a virtual server. But should/can it be used for external available websites? Another thing that I noticed is that you don't have to install certificate services if you use SelfSSL.

            Comment


            • #7
              Originally posted by Greel
              SelfSSL...should/can it be used for external available websites?
              You can but its not recommeded. Its purpose is for testing only. If you use this certificate when a user views the page they'll get a popup message that says "the certificate can not be verified up to a trusted root CA" and or "the certificate does not match the site" where the url used was not properly defined in the certificate.

              If you want the public to use the site buy a cheap certificate.

              http://www.freessl.com (free trial SSL perfect for testing)
              http://www.ev1servers.net (starter SSL is only $4.95)
              Andrew

              ** Remember to give credit where credit is due and leave reputation points sigpic where appropriate **

              Comment

              Working...
              X