Solved

Where can SSL certificate be installed in IIS 5.1?

Posted on 2009-05-11
7
391 Views
Last Modified: 2012-05-06
I have  a simple question that I need an answer on.  I am working with our Accounting software technical support trying to get our timecard website working correctly, and they are telling me to install my SSL certificate on one of the subfolders under the Default Web Site.  I don't think IIS allows that.  I have tried applying the SSL certificate to the subfolder and the "Server Certificate" button is always greyed out.  I can apply the SSL certificate to the whole Default Web Site and then check the box "Require SSL" for each subfolder.  Is this the correct way to do it or will IIS allow you the apply the SSL certificate at the subfolder level?  I have been arguing back and forth with their technical support, and I need proof of what IIS allows.  They told me that they have tested it hundreds of times, but I can't get it to work.  Please advise.  If anyone has a link or something that I can send them for proof, that would be great.

Thanks
0
Comment
Question by:bsimmons2376
  • 4
  • 3
7 Comments
 
LVL 16

Expert Comment

by:2PiFL
Comment Utility
0
 

Author Comment

by:bsimmons2376
Comment Utility
Little bit more clear now.  So, you can't actually key or request an SSL certificate from the subfolder level, can you?  I'm just trying to make sure that the requesting part of the certificate has to be done at the website level - for example, Default Web Site > Properties > Directory Security tab > Server Certificate button.  This button is greyed out under any subfolder of the website.  The Accounting software technical support said I needed to rekey the certificate for one of the subfolders instead of the whole website, which it won't let me do.
0
 
LVL 16

Accepted Solution

by:
2PiFL earned 500 total points
Comment Utility

I've never done it any other way (always at the website level).  Can the accounting software tech support provide documentation on how apply the cert at a sub folder level?
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 

Author Comment

by:bsimmons2376
Comment Utility
They did provide documentation that they "said" they tested hundreds of times.  Their documentation reads like this:

-  Create a new virtual directory under the Default Web Site named MyeFAACT
-  Create your Web Server Certificate (Default Website > MyeFAACT > Properties > Directory Security tab > Server Certificate button) and apply for an SSL Certificate from any SSL certificate provider you choose.  You should not use a self signed certificate.

I've tested it and it DOES NOT WORK.  I told them that I tested it, but they said "I was mistaken" because they have tested it hundreds of times.  
0
 
LVL 16

Expert Comment

by:2PiFL
Comment Utility

What happens if you de-select "Require secure channel" on the default website?
0
 

Author Comment

by:bsimmons2376
Comment Utility
That is the way it is currently setup.  I requested the SSL certificate from the Default Web Site properties and installed it on the Default Web Site.  The only sub folder that is set to "Require Secure channel" is the MyeFAACT directory.  However, tech support is telling me I need to rekey the certificate for only the MyeFAACT directory, which it won't allow you to do.  They swear up and down that they have tested it.  Has anybody else out there been able to do this?
0
 

Author Closing Comment

by:bsimmons2376
Comment Utility
Thank you for your help.  The tech support finally came back and said that their instructions were wrong, and that the SSL certificate would have to be installed at the website level.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Prologue It is often required to host multiple websites on a single instance of IIS, mostly in development environments instead of on production servers. I am sure it is not much a preferred solution on production servers but this is at least a pos…
Real-time is more about the business, not the technology. In day-to-day life, to make real-time decisions like buying or investing, business needs the latest information(e.g. Gold Rate/Stock Rate). Unlike traditional days, you need not wait for a fe…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now