Solved

wildcard cert not binding iis

Posted on 2015-01-12
7
200 Views
Last Modified: 2015-01-16
I am trying to import a PFX based wildcard certificate (*.cissltd.com) into a Windows 2008  SP2, 64 bit OS.  I am able to do the import through the MMC console with the certificate addin added under computer account - but when I go to bind the https: to the site in IIS - there is nothing in the "SSL Certificate:" box to select

i did an IISRESET after the import......

what am I missing?

thanks!
0
Comment
Question by:bensonwalker
  • 3
  • 3
7 Comments
 
LVL 53

Expert Comment

by:Will Szymkowski
ID: 40544696
So you have done the following...
- opened IIS
- Expand Sites
- Click on Default Web Site (or whatever website you have)
- Right click Default Web Site
- Edit Bindings
- Click Add
- Add HTTPS
- Select the Cert from the SSL Certificates drop down
- Restart IIS

Will.
0
 
LVL 6

Expert Comment

by:Kiran Ch
ID: 40544748
0
 
LVL 1

Author Comment

by:bensonwalker
ID: 40544754
Yes. But the select cert box is empty
0
Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

 
LVL 6

Accepted Solution

by:
Kiran Ch earned 500 total points
ID: 40544809
Ok, why not directly go ahead and try importing from with in IIS. Can you click on the Server in IIS and go to Server Certificates and then there is an Import option there. Can you give a try and then bind it later?
0
 
LVL 1

Author Comment

by:bensonwalker
ID: 40545257
i like this feature!  but I am getting an error when I import the PFX: "Certificate cannot be used as an SSL server certificate"........
0
 
LVL 6

Expert Comment

by:Kiran Ch
ID: 40549658
Hi,
Normally those steps above should help you in installing the certificate. Can you check the following?
a.Can you check in the registry that the certificate is showing up, HKLM\Software\Microsoft\SystemCertificates
b.can you check the certificate's properties itself?  the certificate's "Common Name" (CN) matches the host header
c. the issuer of the certificate is a known and trusted CA.
0
 
LVL 1

Author Closing Comment

by:bensonwalker
ID: 40553645
thanks!
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Here are the symptoms: You start receiving calls from users that one of your legacy web apps isn't coming up, so you log into your IIS 5 server to check it out.  When you pull up the services, you notice that the WWW Publishing service isn't runn…
Running classic asp applications under Windows Server 2008 R2 (x64) and IIS 7 is not as easy as one may think. It took me a while to figure it out while getting error 8002801d a few times. After you install the OS you will need to install the fol…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now