Solved

Old SSL cert still showing after renewal - IIS 6.0

Posted on 2006-10-20
4
1,122 Views
Last Modified: 2008-01-09
Hi everyone,

Yesterday I ran into an odd issue at a client site.  One of their websites in IIS 6.0 (Win 2003 SP1) was recently updated with a renewed Thawte SSL certificate.  When I try to log into the web site locally using SSL, the site shows the updated certificate.  When I try to log into the web site from the internet I am still seeing the expired cert.  I removed the cert from IIS and the certificate store, restrated IIS, and then tried importing the cert, but still no luck.  The web servers are load balanced, but the client swears they do not do any SSL acceleration and that the certs have always been stored on the web servers.  

The strange thing is, when I remove the SSL cert from IIS and turn off the SSL port the problem still occurs from the internet.  Locally, the SSL site is unavailable.

Any help is greatly appreciated.

-Dan
0
Comment
Question by:dbruzzone79
  • 2
4 Comments
 
LVL 34

Expert Comment

by:Dave_Dietz
ID: 17775484
Do you by any chance have a citrix secure gateway server set up?

If not, do you have an SSL accelerator device in use?

Dave Dietz
0
 

Author Comment

by:dbruzzone79
ID: 17775841
From what they have told me, they do not have a citrix secure gateway server or an SSL accelerator.  One of their developers is working with their managed hosting provider to see if the load balancer could be the culprit.  
0
 
LVL 34

Accepted Solution

by:
Dave_Dietz earned 250 total points
ID: 17778240
Since you are able to hit the site from the outside via SSL even with the SSL port disabled on the website you absolutely have something else acting as an SSL endpoint that is then forwarding the traffic via standard HTTP.

Once you find that device/service you should simply have to import the certificate there to resolve the issue.

Dave Dietz
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Logparser is the smartest tool I have ever used in parsing IIS log files and there are many interesting things I wanted to share with everyone one of the  real-world  scenario from my current project. Let's get started with  scenario - How do w…
If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
Viewers will get an overview of the benefits and risks of using Bitcoin to accept payments. What Bitcoin is: Legality: Risks: Benefits: Which businesses are best suited?: Other things you should know: How to get started:
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now