Solved

403 forbidden errors after a cert install

Posted on 2011-02-19
3
1,416 Views
Last Modified: 2012-05-11
On one of our applications, one of the certs was expiring so we installed a new one to replace it. If we reverted back to the older cert, the error went away. However the old cert is now expired. Any suggestions.

Now we are getting these alerts.


Event Type:      Error
Event Source:      Office Communications Server 2007 Speech Server
Event Category:      Speech Application
Event ID:      29025
Date:            2/19/2011
Time:            3:09:25 PM
User:            N/A
Computer:      Bobby1
Description:
Application Error 2701:  ERROR: Got error on searchCustomer by ani/tn (12345678) request. Error Code: 500; error msg: System.ServiceModel.Security.MessageSecurityException: The HTTP request was forbidden with client authentication scheme 'Anonymous'. ---> System.Net.WebException: The remote server returned an error: (403) Forbidden.
   at System.Net.HttpWebRequest.EndGetResponse(IAsyncResult asyncResult)
   at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelAsyncRequest.CompleteGetResponse(IAsyncResult result)
   --- End of inner exception stack trace ---

Server stack trace:
   at System.ServiceModel.AsyncResult.End[TAsyncResult](IAsyncResult result)
   at System.ServiceModel.Channels.ServiceChannel.SendAsyncResult.End(SendAsyncResult result)
   at System.ServiceModel.Channels.ServiceChannel.EndCall(String action, Object[] outs, IAsyncResult result)
   at System.ServiceModel.Channels.ServiceChannelProxy.InvokeEndService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
0
Comment
Question by:wbokhary
  • 2
3 Comments
 
LVL 17

Expert Comment

by:OriNetworks
ID: 34934364
Just going by your description rather than trying to read through the error, is the cert valid? valid root certification authorties, valid dates, common name, etc. The new cert may not match up with the common name you are trying to reference the site by. (e.g. if the cert is for mydomain.com  but you are internally referencing it by mydomain.local.)
0
 

Accepted Solution

by:
wbokhary earned 0 total points
ID: 34964240
How you have to use the winhttpcfg.exe tool to configure your certs for at least two service accounts:
ASPNET and NETWORK SERVICE.
That fixes the problem.
0
 

Author Closing Comment

by:wbokhary
ID: 34995474
Found out the solution
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This demonstration started out as a follow up to some recently posted questions on the subject of logging in: http://www.experts-exchange.com/Programming/Languages/Scripting/JavaScript/Q_28634665.html and http://www.experts-exchange.com/Programming/…
Lync server 2013 or Skype for business Backup Service Error ID 4049 – After File Share Migration
This Micro Tutorial demonstrates using Microsoft Excel pivot tables, how to reverse engineer competitors' marketing strategies through backlinks.
Hi friends,  in this video  I'll show you how new windows 10 user can learn the using of windows 10. Thank you.

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now