| Author |
New SSL Certificate not showing on browsers?
|
|
| Transam388 2005-03-17, 5:55 pm |
| We use IIS 5.0 for Outlook Web Access under a secure https port and have a
certificate. The original certificate has been replaced with a new one and
the original completly removed yet when you go to the site and double click
the little lock on the browser to see the SSL details it is still showing the
old certificate. It is probably that I just don't know enough about these
but will the browsers continue to use the orignal certificate until it's ture
expiration and then try te renew or what is the reason the browsers do not
show the information for the new certificate? Thanks!
| |
| Miha Pihler [MVP] 2005-03-18, 7:51 am |
| Hi,
Which certificate do you see if you open IIS MMC -> open properties of
Default Site -> Directory Security. Here click on button "View Certificate".
New certificate should be visible as soon as you switch it under IIS -- and
not only after the old certificate expires.
--
Mike
Microsoft MVP - Windows Security
"Transam388" <Transam388@discussions.microsoft.com> wrote in message
news:EE092C0C-DB86-43CF-8E9A-578D1EAD05BB@microsoft.com...
> We use IIS 5.0 for Outlook Web Access under a secure https port and have a
> certificate. The original certificate has been replaced with a new one
> and
> the original completly removed yet when you go to the site and double
> click
> the little lock on the browser to see the SSL details it is still showing
> the
> old certificate. It is probably that I just don't know enough about these
> but will the browsers continue to use the orignal certificate until it's
> ture
> expiration and then try te renew or what is the reason the browsers do not
> show the information for the new certificate? Thanks!
| |
| Transam388 2005-03-18, 5:56 pm |
| Thanks for the response! When I do open the IIS and Directory security it
does show the new certificate with the new valid dates. That is why I am
stumped as to why the browsers are still showing the original certificate
details. I have tried removing the certificate and reinstalling. Every time
it says it is sucessfully done but the browsers still show the old.? I
restarted the system just to make sure but nothing. What I don't get either
is if the original has been removed how are the browser still getting in
using the old certificate? Again, any ideas are appreciated and thanks for
your response Miha!
"Miha Pihler [MVP]" wrote:
> Hi,
>
> Which certificate do you see if you open IIS MMC -> open properties of
> Default Site -> Directory Security. Here click on button "View Certificate".
> New certificate should be visible as soon as you switch it under IIS -- and
> not only after the old certificate expires.
>
> --
> Mike
> Microsoft MVP - Windows Security
>
> "Transam388" <Transam388@discussions.microsoft.com> wrote in message
> news:EE092C0C-DB86-43CF-8E9A-578D1EAD05BB@microsoft.com...
>
>
>
| |
| Transam388 2005-03-18, 5:56 pm |
| OK, now this is interesting. After having responded to your last item I
tried using the https://ipaddressofserver instead of https://sitename.com and
it did ask if I want to install the new certificate. Currently the SSL was
set to unassigned so it should be used on any IP for that site or any other
pages on that IIS server. Granted the OWA is the only site running so no big
deal there. Again, any ideas? Thanks!
"Miha Pihler [MVP]" wrote:
> Hi,
>
> Which certificate do you see if you open IIS MMC -> open properties of
> Default Site -> Directory Security. Here click on button "View Certificate".
> New certificate should be visible as soon as you switch it under IIS -- and
> not only after the old certificate expires.
>
> --
> Mike
> Microsoft MVP - Windows Security
>
> "Transam388" <Transam388@discussions.microsoft.com> wrote in message
> news:EE092C0C-DB86-43CF-8E9A-578D1EAD05BB@microsoft.com...
>
>
>
| |
| aqcccis 2005-03-29, 10:36 am |
| I'm running into the exact same problem on one of my servers. Just renewed the Certificate, and from within the MMC on the webserver I see that it thinks it's serving up the new certificate. But when you visit the site it give a Security Alert about using its expired cert.
[QUOTE]Originally posted by Transam388
[B]OK, now this is interesting. After having responded to your last item I
tried using the https://ipaddressofserver instead of https://sitename.com and
it did ask if I want to install the new certificate. Currently the SSL was
set to unassigned so it should be used on any IP for that site or any other
pages on that IIS server. Granted the OWA is the only site running so no big
deal there. Again, any ideas? Thanks! |
|
|
|