?
Solved

How to tie SSL cert to site in IIS 7.5

Posted on 2014-01-15
9
Medium Priority
?
476 Views
Last Modified: 2014-01-21
I've been given the task to find out what SSL certificates are expiring on all of our Intranet sites. I'm not too familiar with IIS 7.5. When I browse to "certificates" through the mmc I go to "Personal" and see that there are two certs. One is expired and the other is not.

The expired cert Issued To, says our site name and it expired on 10/23/13
The other cert Issued To, says verisign.com and expires on 10/24/16

For the cert that is not expired, how do I know that cert is tied to my site? I do not see that cert listed anywhere in IIS under my site. This is where I'm confused.

Thanks
0
Comment
Question by:BuRinger7a
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
  • 2
9 Comments
 
LVL 18

Expert Comment

by:Emmanuel Adebayo
ID: 39782610
The cert that is not expired i.e verisign.com suppose not to be in your Personal folder, if at all it should be in the Root or Intermediate Certificate Authority.

Was your certificate signed by verisign? If not you don't need to be worried about, just deleted, but ensure that you export it first.

Regards
0
 

Author Comment

by:BuRinger7a
ID: 39782632
I guess my main question is, where in IIS can I find what SSL cert my site is using.
0
 
LVL 18

Expert Comment

by:Emmanuel Adebayo
ID: 39782702
You are in the right place to check the certificate that your site is using, i.e

MMC -  Add Snap-ins - Certificate - (Computer account) - Local Computer - Personal - Certificates.
0
Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

 

Author Comment

by:BuRinger7a
ID: 39782775
Right but lets say I have two sites in IIS. How do I match up the certs in Personal - Certificates to the sites in IIS? Is there an area in IIS that tells me what cert the site is using?

Thanks
0
 
LVL 15

Accepted Solution

by:
pcsmitpra earned 2000 total points
ID: 39782796
Launch IIS > Click on Server > Select Server certificates
You can see all SSL certificates which are mapped or placed for any of the website.
0
 

Author Comment

by:BuRinger7a
ID: 39782836
When I click on Server - Server certificates, it only has the cert listed that has expired. Is this telling me that the cert in mmc that has not expired is not tied to my sites?

Sorry, I'm very unfamilar with IIS and certificates.

Thanks
0
 
LVL 15

Expert Comment

by:pcsmitpra
ID: 39782902
It means that : -
1) either that is not mapped to any of your website
2) that is not in use
3) That is not for website

you can double click kon that certificate and see the domian it is issued for and make sure for which it is purchased, and accordingly map it to website.
0
 

Author Comment

by:BuRinger7a
ID: 39783118
I can access the site by HTTP and HTTPS. With the ssl expired, should I still be able to access the site through HTTPS?
0
 
LVL 15

Expert Comment

by:pcsmitpra
ID: 39787980
In such case there should be a warning message, on browser. actually it should not run, but that will need a code on webpage to bind it with SSL only. If you want to do it via IIS only then create another site with HTTP binding only and make its redirection to HTTPs site.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lease-to-own eliminates the expenditure of hardware replacement and allows you to pay off the server over time. Usually, this is much cheaper than leasing servers. Think of lease-to-own as credit without interest.
What You Need to Know when Searching for a Webhost Provider
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question