Welcome to MobyThreads.com!
FAQFAQ   SearchSearch      ProfileProfile    Private MessagesPrivate Messages   Log in/Register/PasswordLog in/Register/Password

Incorrect SSL Certificate

  
   Web Hosting and Web Master Forums (Home) -> IIS RSS
Related Topics:
Incorrect page - Problem: Index server is bringing back pages that it it shouldn't The problem is i can't find where these pages are comming from.. I have tried a number of methods for excluding etc. But i still get funny pages. The second problem is how..

Incorrect sessionkey - Hi gurus, Recently i noticed that there was an incorrect data displayed in a page and after i noticed that it belongs to another Have you anything like this? i.e. when you retrieve the from the session..

Incorrect value for sc-bytes in IIS Extended Log - Hello, We're using IIS5.0 on W2KSP4. When looking at extended log files, checking sc-bytes value, we see an incorrect value in with the one extracted from sniffing network M$ KB states this issue with header value that was..

My introduction (incorrect crosspost, sorry) - Hi, I just wanted to take a moment to introduce myself. I work for Rackspace Managed Hosting -- a fairly large hosting company in San Antonio, TX. I'm a Lead Windows Engineer for the (or segment. The knowledge pool..

using iisstate "incorrect process attachment" - Hello, Since we are having some problems with our IIS servers, I would like to run iisstate. However, when using the PID's of either the inetinfo or w3wp services, I always receive the comment process What am I doing wrong ? I..
Next:  IIS: How know how many connections there are on IIS at the mome..  
Author Message
Adotek

External


Since: Jun 29, 2007
Posts: 2



(Msg. 1) Posted: Fri Jun 29, 2007 5:47 am
Post subject: Incorrect SSL Certificate
Archived from groups: microsoft>public>inetserver>iis (more info?)
Hi All,

I have IIS 5 running 3 websites...

- www.ourdomain.com
- ha.ourdomain.com
- www.someotherdomain.com

We have had a VeriSign SSL certificate installed on www.ourdomain.com
for some time, which works fine.

Recently, I have installed a trial Thawte certificate on
ha.ourdomain.com, this was setup specifically for that domain, when I
view the certificate in IIS, I see ha.ourdomain.com, however,
accessing the site ha.ourdomain.com over SSL results in a security
alert, because the name on the certificate does not match the site - I
click on 'view certificate' and see that the SSL cert for www.ourdomain.com
has been provided...Not the cert for ha.ourdomain.com!

Must say I am confused...To my knowledge, the correct certificate was
installed on the correct site...and what IIS tells me conflicts with
what my browser says!

Any ideas of help will of course be appreciated!

Thanks,

Simon.

 >> Stay informed about: Incorrect SSL Certificate 
Back to top
Login to vote
Adotek

External


Since: Jun 29, 2007
Posts: 2



(Msg. 2) Posted: Fri Jun 29, 2007 7:21 am
Post subject: Re: Incorrect SSL Certificate [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Hi,

Thanks for your reply!

On Jun 29, 2:44 pm, ".._.." <.... RemoveThis @yourmom.mil> wrote:
> How many IP addresses are you using?
One - Looks like this is the problem then!

> to host more than one site on the same IP gets encrypted. I bet you get the
> wrong site too right?)
No, the correct site comes up fine

Can you give me some idea of how I get round this issue?

Simon.

 >> Stay informed about: Incorrect SSL Certificate 
Back to top
Login to vote
user

External


Since: Feb 05, 2007
Posts: 82



(Msg. 3) Posted: Fri Jun 29, 2007 11:01 am
Post subject: Re: Incorrect SSL Certificate [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
How many IP addresses are you using? Certificates take one IP each. So you
can only run one site with SSL if you have only one IP. If you have two
IPs, you can run two SSL sites, etc. (The HTTP 1.1 header information used
to host more than one site on the same IP gets encrypted. I bet you get the
wrong site too right?)

"Adotek" <simonmharris.TakeThisOut@googlemail.com> wrote in message
news:1183121256.633212.41780@o61g2000hsh.googlegroups.com...
> Hi All,
>
> I have IIS 5 running 3 websites...
>
> - www.ourdomain.com
> - ha.ourdomain.com
> - www.someotherdomain.com
>
> We have had a VeriSign SSL certificate installed on www.ourdomain.com
> for some time, which works fine.
>
> Recently, I have installed a trial Thawte certificate on
> ha.ourdomain.com, this was setup specifically for that domain, when I
> view the certificate in IIS, I see ha.ourdomain.com, however,
> accessing the site ha.ourdomain.com over SSL results in a security
> alert, because the name on the certificate does not match the site - I
> click on 'view certificate' and see that the SSL cert for
> www.ourdomain.com
> has been provided...Not the cert for ha.ourdomain.com!
>
> Must say I am confused...To my knowledge, the correct certificate was
> installed on the correct site...and what IIS tells me conflicts with
> what my browser says!
>
> Any ideas of help will of course be appreciated!
>
> Thanks,
>
> Simon.
>
 >> Stay informed about: Incorrect SSL Certificate 
Back to top
Login to vote
user

External


Since: Feb 05, 2007
Posts: 82



(Msg. 4) Posted: Mon Jul 02, 2007 10:59 am
Post subject: Re: Incorrect SSL Certificate [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
"Adotek" <simonmharris.RemoveThis@googlemail.com> wrote in message
news:1183126884.188370.293830@u2g2000hsc.googlegroups.com...
> Hi,
>
> Thanks for your reply!
>
> On Jun 29, 2:44 pm, ".._.." <.....RemoveThis@yourmom.mil> wrote:
>> How many IP addresses are you using?
> One - Looks like this is the problem then!
>
>> to host more than one site on the same IP gets encrypted. I bet you get
>> the
>> wrong site too right?)
> No, the correct site comes up fine
>
> Can you give me some idea of how I get round this issue?
>
> Simon.
>

You don't. You are stuck, that's how HTTPS 1.1 works. It encrypts the
information used (host headers) by IIS to allow you to use 1 IP for several
sites.

If you want more certs, you need more IPs. Period.
 >> Stay informed about: Incorrect SSL Certificate 
Back to top
Login to vote
Robert

External


Since: Jun 27, 2007
Posts: 3



(Msg. 5) Posted: Mon Jul 02, 2007 12:33 pm
Post subject: Re: Incorrect SSL Certificate [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Jul 2, 8:06 am, ".._.." <.....TakeThisOut@yourmom.mil> wrote:
> "Adotek" <simonmhar....TakeThisOut@googlemail.com> wrote in message
>
> news:1183126884.188370.293830@u2g2000hsc.googlegroups.com...
>
>
>
>
>
> > Hi,
>
> > Thanks for your reply!
>
> > On Jun 29, 2:44 pm, ".._.." <.....TakeThisOut@yourmom.mil> wrote:
> >> How many IP addresses are you using?
> > One - Looks like this is the problem then!
>
> >> to host more than one site on the same IP gets encrypted. I bet you get
> >> the
> >> wrong site too right?)
> > No, the correct site comes up fine
>
> > Can you give me some idea of how I get round this issue?
>
> > Simon.
>
> You don't. You are stuck, that's how HTTPS 1.1 works. It encrypts the
> information used (host headers) by IIS to allow you to use 1 IP for several
> sites.
>
> If you want more certs, you need more IPs. Period.- Hide quoted text -
>
> - Show quoted text -

This is true in general although there is one workaround. It might not
work for you since you are using IIS 5 but it may work for some
people:

Using Host Headers with SSL-enabled Web Sites in IIS 6.0
http://agramont.net/blogs/conrad/archive/2006/06/26/21.aspx

--
Robert
SSL Shopper - SSL certificate comparison
http://www.sslshopper.com
 >> Stay informed about: Incorrect SSL Certificate 
Back to top
Login to vote
Display posts from previous:   
   Web Hosting and Web Master Forums (Home) -> IIS All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



[ Contact us | Terms of Service/Privacy Policy ]