Strange SSL problems
From: news.comcast.giganews.com (nomadpgmr_at_comcast.net)
Date: 11/13/03
- Next message: Greg: "Web root idiot"
- Previous message: Eoin Mooney: "IUSR_computerName account - differences 2000 and 2003"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 13 Nov 2003 01:49:58 -0800
I recently generated a CSR for a customer.
I received the certificate back from Thawte and installed it without any
problems.
I then checked the site to make sure it could be viewed using https
I got a DNS error, even when trying to view the site using the IP address
I started digging around and tried a few things.
I could view the certificate and it looked good from within IIS.
The screen said that there was a private key present.
I tried to export (backup the certificate), but when I did so it said no
private key was present.
I determined that the MMC was failing to read a key file from:
C:\Documents and Settings\All Users\Application
Data\Microsoft\Crypto\RSA\MachineKeys
I compared the permissions on this directory to the permissions on another
server. The permissions were set correctly.
I then generated another CSR on the 1st server and noted that no file was
created in
C:\Documents and Settings\All Users\Application
Data\Microsoft\Crypto\RSA\MachineKeys
Generating an identical CSR on the 2nd server and found the system did
create a key file in
C:\Documents and Settings\All Users\Application
Data\Microsoft\Crypto\RSA\MachineKeys
Anyone have any idea as to why this would work correctly on oen system and
not on another?
I can always generate the CSR and install the certificate on another system
and move it over, so I have a workaround. What I would like to know is why I
am seeing what I am seeing.
Thanks,
Roger
- Next message: Greg: "Web root idiot"
- Previous message: Eoin Mooney: "IUSR_computerName account - differences 2000 and 2003"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
