OWA SSL Problem
Hi All,
I'm having an issue with Outlook Web Access (Exchange 2003, Server 2003) when trying to set it to use SSL.
There is already a certificate installed and I simpled ticked the box to 'Require secure channel (SSL)' and 'Require 128-bit encryption'.
When browsing to the https link it asks if i want to accept the certificate and tries to load up the correct page but then fails and says it can't be found.
If i untick the SSL box and use the http link then it works fine.
I've recreated IIS but still no joy. Any ideas?
I'm having an issue with Outlook Web Access (Exchange 2003, Server 2003) when trying to set it to use SSL.
There is already a certificate installed and I simpled ticked the box to 'Require secure channel (SSL)' and 'Require 128-bit encryption'.
When browsing to the https link it asks if i want to accept the certificate and tries to load up the correct page but then fails and says it can't be found.
If i untick the SSL box and use the http link then it works fine.
I've recreated IIS but still no joy. Any ideas?
The two options to require SSL and 128-bit encryption are not options that turn on or turn off SSL, which many people seem to think they are.
Without those options enabled you should still be able to use SSL, so https://host.domain.com/exchange
Therefore I would suggest trying it without those options enabled.
Do you have forms based authentication enabled? If not, enable it so that you get the graphical login on SSL instead of the standard box.
Simon.
Without those options enabled you should still be able to use SSL, so https://host.domain.com/exchange
Therefore I would suggest trying it without those options enabled.
Do you have forms based authentication enabled? If not, enable it so that you get the graphical login on SSL instead of the standard box.
Simon.
ASKER
Forms based Authentication is enabled but it still brings up the standard box.
I've tried it with and without those SSL options enabled and it still doesn't work.
amaheshwari: Already been through that.
I've tried it with and without those SSL options enabled and it still doesn't work.
amaheshwari: Already been through that.
If you are not getting the forms based authentication page then either something is wrong with the SSL certificate, there is something else is using port 443 or something is wrong with IIS.
Are you sure there is nothing else on the server using port 443?
Verify that anonymous authentication ONLY is configured on the /exchweb virtual directory in IIS Manager.
Simon.
Are you sure there is nothing else on the server using port 443?
Verify that anonymous authentication ONLY is configured on the /exchweb virtual directory in IIS Manager.
Simon.
ASKER
How can i tell if anything else is using 443?
Permissions for /exchweb are correct.
Permissions for /exchweb are correct.
netstat -a will show you what ports of are currently being used by the machine.
netstat -ano will show you the ports and the PID. You can then use task manager to find the application from its PID.
Simon.
netstat -ano will show you the ports and the PID. You can then use task manager to find the application from its PID.
Simon.
ASKER
https is just listening
Did you run the second command to see what application is listening?
Something is listening to https, I wouldn't disagree with that, but you need to see whether it is IIS or another application.
Simon.
Something is listening to https, I wouldn't disagree with that, but you need to see whether it is IIS or another application.
Simon.
ASKER
It's on PID 4 which translates to System in processes
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Tested with selfssl...worked first time!
Can't believe a certificate would stop the page from loading properly? Anyway, thanks for all the tips (again) Simon.
Can't believe a certificate would stop the page from loading properly? Anyway, thanks for all the tips (again) Simon.
http://www.msexchange.org/tutorials/SSL_Enabling_OWA_2003.html