Re: Multiple Certificates
From: Karl Westerholm [MS] (karlwestonline@microsoft.com)
Date: 07/18/02
- Next message: Karl Westerholm [MS]: "RE: set expire date on cert from ca"
- Previous message: Susan Hayden [MS]: "RE: RDS subsystem dlls"
- In reply to: Lisa: "Re: Multiple Certificates"
- Next in thread: Paul Lynch: "Re: Multiple Certificates"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: karlwestonline@microsoft.com (Karl Westerholm [MS]) Date: Wed, 17 Jul 2002 23:27:12 GMT
'Server authentication' is just fine.
So on the first site, the certificate is installed & working fine. On
the second (failing) website that is bound to the second IP address, can
you go to the properties/'directory security' tab, and in the 'secure
communications' section click the 'view certificate' button. (assuming, of
course, that the certificate you would like to use is currently installed
to the site)
If you look at this cert's 'genera' tab, do you see the line: "you have
a private key that corresponds to this certificate" in the bottom portion
of the field?
If the private key for this cert is present, when you fire up a browser
and hit this server via https://second.website.name, does it completely
fail to connect? (i.e. it gives the 'Page cannot be displayed/Cannot find
server or DNS Error.' error) or does it pop up any SSL session dialog boxes
and then fail to connect?
Another test that might be worth doing is to create a new test
certificate (but with the same Common Name & other info as the failing
certificate) from a test CA to see if this new certificate works properly.
You can do this from any local CAs you might have, there is a Microsoft
Certificate Server 2.0 site set up here (http://131.107.152.153/certsrv)
for such interop testing. (main site is http://sectest.rte.microsoft.com)
Regards,
-->Karl
“Please do not send email directly to this alias. This is our online
account name for newsgroup participation only.”
This posting is provided “AS IS” with no warranties, and confers no rights.
You assume all risk for your use. © 2001 Microsoft Corporation. All rights
reserved.
--------------------
| Content-Class: urn:content-classes:message
| From: "Lisa" <travails@maddeninghappenings.com>
| Sender: "Lisa" <travails@maddeninghappenings.com>
| References: <1a83d01c22d23$dd948a80$35ef2ecf@TKMSFTNGXA11>
<#8N38CWLCHA.2552@tkmsftngp08>
| Subject: Re: Multiple Certificates
| Date: Wed, 17 Jul 2002 12:26:41 -0700
|
| P.S. Under the certificates manager it states that both
| the certificates' "intended purpose" is "server
| authentication". Do your certificates read like that or
| do they say something like "web site authentication" as
| opposed to "server authentication"?
|
- Next message: Karl Westerholm [MS]: "RE: set expire date on cert from ca"
- Previous message: Susan Hayden [MS]: "RE: RDS subsystem dlls"
- In reply to: Lisa: "Re: Multiple Certificates"
- Next in thread: Paul Lynch: "Re: Multiple Certificates"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
