Managing Active Directory does not always have to be complicated. If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why
Unable to browse to our Certificate Authority website
I am in the middle of renewing our Exchange certificate. When I browse to http://localhost/certserv, IE tells me that the website can't be displayed.
More specifically, when I browse to that site via IIS, I receive the error below.
My IIS expertice is limited so I don't want to start to change how the modules are handled etc without knowing exactly what I'm doing.
Thanks for your input!
Error Summary
HTTP Error 500.0 - Internal Server Error
The page cannot be displayed because an internal server error has occurred. Detailed Error InformationModule IsapiModule
Notification ExecuteRequestHandler
Handler AboMapperCustom-17386171
Error Code 0x800700c1
Requested URL http://192.168.**.**:80/CertSrv
Physical Path C:\Windows\system32\CertSr
Logon Method Negotiate
Logon User *******\*****
More specifically, when I browse to that site via IIS, I receive the error below.
My IIS expertice is limited so I don't want to start to change how the modules are handled etc without knowing exactly what I'm doing.
Thanks for your input!
Error Summary
HTTP Error 500.0 - Internal Server Error
The page cannot be displayed because an internal server error has occurred. Detailed Error InformationModule IsapiModule
Notification ExecuteRequestHandler
Handler AboMapperCustom-17386171
Error Code 0x800700c1
Requested URL http://192.168.**.**:80/CertSrv
Physical Path C:\Windows\system32\CertSr
Logon Method Negotiate
Logon User *******\*****
Who is Participating?
is it something like this >> http://forums.iis.net/t/1144489.aspx
I don't think so. I don't actually get the options below in IIS7 manager; I don't see 'Advanced settings' anywhere with the Application Pool selected as described in the article.
Could that have something to do with IIS7 running on Server 2008R2?
Any other suggestions anyone?
Could that have something to do with IIS7 running on Server 2008R2?
Any other suggestions anyone?
I have tried mapping script points to the ISAPI .dll in Handler Mappings. There are still a few sources that don't have a specific file assigned to them such as AboMapperCustom-1738171, AboMapperCustom-17386187, OPTIONSVerbHandler, TRACEVerbHandler and StaticFile.
The simply have a * path.
Checking the default application pool, which is the one certsrv uses, 32bit application is set to false (and so are all the other pools).
Two things I have noticed when comparing IIS on a CA which has the certsrv site working with our IIS setup is that:
•there is no .ASP section in the certsrv configuration pane and
•when trying to enable HTTPS it says: 'The Site does not have a secure binding (HTTPS) and cannot accept SSL connections
Is there an easy way to repair certsrv or IIS?
In the worst case scenario, can I just setup a new CA server?
Thanks
The simply have a * path.
Checking the default application pool, which is the one certsrv uses, 32bit application is set to false (and so are all the other pools).
Two things I have noticed when comparing IIS on a CA which has the certsrv site working with our IIS setup is that:
•there is no .ASP section in the certsrv configuration pane and
•when trying to enable HTTPS it says: 'The Site does not have a secure binding (HTTPS) and cannot accept SSL connections
Is there an easy way to repair certsrv or IIS?
In the worst case scenario, can I just setup a new CA server?
Thanks
uninstall the web enrollment role and IIS then reinstall them again, you can always install new CA server.
New developments:
I played around a bit more with the Handler Mappings and assigned .NET Classic mode to the certsrv site.
I was then able to access the website but got the following error:
'No certificate templates could be found. You do not have permission to request a certificate from this CA, or an error occured while accessing the Active Directory'.
Any further suggestions are appreciated.
I played around a bit more with the Handler Mappings and assigned .NET Classic mode to the certsrv site.
I was then able to access the website but got the following error:
'No certificate templates could be found. You do not have permission to request a certificate from this CA, or an error occured while accessing the Active Directory'.
Any further suggestions are appreciated.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
All Courses
From novice to tech pro — start learning today.
-
Course of the Month9 days, 14 hours left to enrollMonitoring and Operating a Private Cloud with System Center 2012 R2 273 lessons
I might start a new post with more specific error messages.