Re: Multiple SSLs on the same IIs server

Hi,

I'd like to suggest you first run the SSLDaig tool to scan the whole IIS
server's SSL configuration. Check if the correct certficate is actually
assigned to the problematic site and all web sites' SSL bindings are
correct. Especially all web sites should use their specific IP addresses
instead of 'all unassigned'. Also please test the following cases:

1. Use IP address to access the problematic SSL site, i.e: https://<IP
address>/... to ensure this is not an incorrect DNS resolution issue.
2. Temporarily change the site to use a non-default SSL port instead of 443
to make IIS identify the site by port.
Will you still get the incorrect wildcard cert in these 2 cases?

The Lastest version SSLDiag can be found at:

Internet Information Services Diagnostic Tools
http://www.microsoft.com/windowsserver2003/iis/diagnostictools/default.mspx

Note: when SSLDiag is finished scanning the SSL config, please double-click
a site's section (e.g [W3SVC/1]), the tool will open a new window to test
the SSL handshake.

Please send the log and trace to me at: wjzhang@xxxxxxxxxxxxxxxxxxxx
(remove online.) and my backup Wen Yuan: v-wywang@xxxxxxxxxxxxxxxxxxxx
(remove online.)

We are looking forward to your update.
Thanks.

Sincerely,

WenJun Zhang

Microsoft Online Community Support

==================================================

Get notification to my posts through email? Please refer to:
http://msdn.microsoft.com/subscriptions/managednewsgroups/default.aspx#notif
ications.

Note: The MSDN Managed Newsgroup support offering is for non-urgent issues
where an initial response from the community or a Microsoft Support
Engineer within 1 business day is acceptable. Please note that each follow
up response may take approximately 2 business days as the support
professional working with you may need further investigation to reach the
most efficient resolution. The offering is not appropriate for situations
that require urgent, real-time or phone-based interactions or complex
project analysis and dump analysis issues. Issues of this nature are best
handled working with a dedicated Microsoft Support Engineer by contacting
Microsoft Customer Support Services (CSS) at:

http://msdn.microsoft.com/subscriptions/support/default.aspx.

==================================================

This posting is provided "AS IS" with no warranties, and confers no rights.

.

Relevant Pages

  • RE: SSL 2.0
    ... So - since the value is not present by default, how is it that PCT is ... Only SSL 2.0 is not recommended for sure. ... Microsoft Online Community Support ... where an initial response from the community or a Microsoft Support ...
    (microsoft.public.inetserver.iis.security)
  • RE: SoapException - NullReferenceException
    ... As for webservice over SSL, there does exists some common issue such as the ... client certificate supplyment(if you've configured it to require client ... Microsoft MSDN Online Support Lead ... I have a web service running on an SSL connection and unfortunately I ...
    (microsoft.public.dotnet.framework.aspnet.webservices)
  • Re: SSL vs Windows Integrated Security
    ... Actually my understanding is that SSL and integrated auth work on different ... Microsoft Online Community Support ... initial response from the community or a Microsoft Support Engineer within ...
    (microsoft.public.inetserver.iis.security)
  • Re: Multiple SSLs on the same IIs server
    ... I ran the ssl diag tool and it showed me several errors. ... (remove online.) ... Microsoft Online Community Support ... where an initial response from the community or a Microsoft Support ...
    (microsoft.public.inetserver.iis.security)
  • RE: OWA SSL Redirect Problem
    ... please disable the SSL authentication on the ... Microsoft Online Partner Support ... Business-Critical Phone Support (BCPS) provides you with technical phone ... If you are outside the United States, ...
    (microsoft.public.exchange2000.admin)