SSL  doesn't work remotely but does work locally

Posted on 2012-09-18
Last Modified: 2012-09-18
A customer bought an SSL certificate to go with their domain. I don't install them myself but was asked to watch and comment.

The site said it required a CSR of 2048 bytes. We used IIS 6 to create the CSR but it created a file around 1360 bytes and it was refused. Later, when I wasn't connected and watching the process, the user announced that it now worked. When I checked the size of the CSR it was 1730 bytes. worked when he tried on his work computer on the same network as the web server but this url does not work from outside his business.

Is the problem a propagation lag, port 443 not open to the internet or just a too small CSR.

Question by:bob_mechler
    LVL 5

    Expert Comment

    Check to see if port 443 is forwarded to the server in question.

    There cannot be a propagation lag and CSR size does not come into play when you have a "valid" certificate that loads on the browser even if it is internal only.

    What error do you get when you try it from outside your network? Server not responding?

    Author Comment

    Server not responding (Timeout)

    Author Comment

    using http:// goes right to the site however.
    LVL 5

    Accepted Solution

    Please check to see if port 443 is forwarded to the server then. It looks like only 80 is.

    Author Closing Comment

    Logical answer. First eliminate what it can't be and you are left with the high probability answer.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    This story has been written with permission from the scammed victim, a valued client of mine – identity protected by request.
    If you get continual lockouts after changing your Active Directory password, there are several possible reasons.  Two of the most common are using other devices to access your email and stored passwords in the credential manager of windows.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include tâ€Ĥ
    This video discusses moving either the default database or any database to a new volume.

    755 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now