IIS Server Security - SSL using locally generated certificate

Author

SSL using locally generated certificate

Lonnie Massey

2006-06-12, 7:22 pm

I'm getting ready to secure my Outlook Web Access 2003 with SSL. The web
server is running Windows 2000 (IIS 5.0), and the Certificate Server is on
the Exchange server (Win2003). I've set up a test folder, created a
certificate using Certificate Authority, and installed it on my web server.

When I access my test folder using the full web address from inside the
firewall (ISA 2000), everything works as it should. When I try to access it
from outside, I get "Cannot find server or DNS Error."

Daniel Crichton

2006-06-13, 7:29 am

Lonnie wrote on Mon, 12 Jun 2006 17:05:01 -0700:

> I'm getting ready to secure my Outlook Web Access 2003 with SSL. The web
> server is running Windows 2000 (IIS 5.0), and the Certificate Server is on
> the Exchange server (Win2003). I've set up a test folder, created a
> certificate using Certificate Authority, and installed it on my web
> server.
>
> When I access my test folder using the full web address from inside the
> firewall (ISA 2000), everything works as it should. When I try to access
> it from outside, I get "Cannot find server or DNS Error."

Did you set port 443 on your firewall to access port 443 on your web server,
and allow incoming connections? It sounds like that's the step that's
missing.

Dan

Lonnie Massey

2006-06-13, 1:23 pm

Port 443 is set up correctly - but I think you've pointed me in the right
direction. I think this is an ISA configuration problem. There's an option to
"Enable SSL listeners" that I hadn't activated. As soon as my tester
(daughter) wakes up, I'll have her try it.

Thanks.

"Daniel Crichton" wrote:

> Lonnie wrote on Mon, 12 Jun 2006 17:05:01 -0700:
>
>
> Did you set port 443 on your firewall to access port 443 on your web server,
> and allow incoming connections? It sounds like that's the step that's
> missing.
>
> Dan
>
>
>