Solved

Can't view my https ?

Posted on 2014-03-14
15
259 Views
Last Modified: 2014-04-09
Hi Experts,
Having trouble viewing my site as https after cert install.

I can still view my site through port :80

Not sure if I have my bindings set correctly though? http has a host name and and IP address where as https does not. Should the https have the same IP as http? Further I only want the site to display in https.

Thank you
0
Comment
Question by:thenrich
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 8
  • 7
15 Comments
 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39929792
Hi,

in the given article see the "IIS Manager" secssion.

http://www.iis.net/learn/manage/configuring-security/how-to-set-up-ssl-on-iis
0
 
LVL 5

Author Comment

by:thenrich
ID: 39929843
Hi, Thank you for posting that artical but does little to help my situation. I can browse to my local on port :443 and the site comes up but not externally

I'm running IIS7 and Server 2008r2. Cert appears to installed and configured correctly in IIS. I can not see any other applications using port 443?
0
 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39929860
you are unable to access the site using https from your LAN or internet ??
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 5

Author Comment

by:thenrich
ID: 39929889
Unable to access from internet

When I browse from IIS it works fine other then I get a warning saying local host and my site name do not match my cert
0
 
LVL 5

Author Comment

by:thenrich
ID: 39929907
Also when I go to the https it takes some time before the 'Page can't be displayed error'  pops up. In fact the the title tab indicates 'Waiting' so it must be trying?
0
 
LVL 13

Accepted Solution

by:
Santosh Gupta earned 500 total points
ID: 39929924
1. what is your site name i.e. abc.com and how you are externally accessing ?
2. try to access your site externally https://www.yoursite.com
3. try to access your site externally https://yoursite.com 
4. check your certificate and see what is domain name showing in certificate.
0
 
LVL 5

Author Comment

by:thenrich
ID: 39929963
My site is set up like:

https://companyws.domain.com

no www
0
 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39929988
1. try to access https://domain.com/ and share error.
2. check if public DNS is configured properly.
3. Check if port 443 is opened by your router/firewall
4. check if port forwarding/NATing is configured on router/firewall.
0
 
LVL 5

Author Comment

by:thenrich
ID: 39930046
1) It takes me to a hosting provider. Not sure what you mean? My site is not a www - Please see above? My site is a sub domain within  main with it's own unique namespace. https://domain.com/  would be our main domain which isn't relevent here.
2) What does that mean? My server has a static public IP - confirmed and works with http. Do I need another static IP for https?
3) Yes inbound rule is there
4) No clue what your talking about there.
0
 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39930112
What i assuming, you have your own webserver and managed by you in your LAN.

Let me explain here how web site works.

1. A user type the https://companyws.domain.com in address bar.
2.  the request goes to for DNS resolution (to your Domain provider).
3. DNS resolve it and redirect to your public IP i.e is your router/firewall public IP.
4. router see the request and based on the NAT rule, it change "your router IP" to your  local IP (webserver).


So here is my answer.

1.      i just want to make sure that atleast it goes to your DNS, but seems your web server is hosted.
2.       your hosting provider services provider must have shared he public IPs.
3.      its good.
4.      if it is host on cloud (hosting provider) or your LAN. In both case NATing is required. If its hosted then your hosting provider should configure or if its in you LAN then your should have to configure.


so finally, pls clear how your webserver configure, its hosted or in-premises (LAN)
0
 
LVL 5

Author Comment

by:thenrich
ID: 39930134
the webserver is on site configured in a DMZ
0
 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39930171
Is your webserver configure like this ???
DMZ
0
 
LVL 5

Author Comment

by:thenrich
ID: 39930185
yes
0
 
LVL 5

Author Comment

by:thenrich
ID: 39930201
So I just used this tool:

http://www.yougetsignal.com/tools/open-ports/

port 80 open
port 443 closed
0
 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39930202
ok thanks,

1. number 1 is in image is your ISP (to whom your have purchased the Domain name) - Check if host record is created for companyws and its pointing to your router (2) public IP.

2. . number 2 is in image is your Router-check if it is configured to 443 and 80 redirect the traffic (NAT) to your webserver (3).

3. . number 3 is in image is your webserver -check if windows firewall allows 443 and 80 traffic.

pls let me know if you have still any question.
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microservice architecture adoption brings many advantages, but can add intricacy. Selecting the right orchestration tool is most important for business specific needs.
As tax season makes its return, so does the increase in cyber crime and tax refund phishing that comes with it
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question