| Author |
Message |
paul
Guest
|
 Posted:
Sun Dec 26, 2004 10:42 pm Post subject:
Need help with HTTPS |
|
|
Hey all
I'm new at this, so please bear with me.
Basically, I'm trying to set things up so that clients would connect to my
asp.net web site (.aspx) vias https.
I have been following the following links closely to accomplish this:
http://support.microsoft.com/kb/816794
http://support.microsoft.com/default.aspx?scid=kb;en-us;324069
My problem (as far as I know) is two-fold:
i) I am unable to select the 'Server Certificate' (it is shaded out) when I
follow the steps below as outlined in one of the links above:
Assign the Imported Certificate to the Web Site
1. Click Start, point to Administrative Tools, and then click Internet
Information Services (IIS) Manager.
2. In the left pane, click your server.
3. In the right pane, double-click Web Sites.
4. In the right pane, right-click the Web site you want to assign the
certificate to, and then click Properties.
5. Click Directory Security, and then click Server Certificate.
6. On the Welcome to the Web Certificate Wizard page, click Next.
7. On the Server Certificate page, click Assign an existing
certificate, and then click Next.
8. On the Available Certificates page, click the installed certificate
you want to assign to this Web site, and then click Next.
9. On the SSL Port page, configure the SSL port number. The default
port of 443 is appropriate for most situations.
10. Click Next.
11. On the Certificate Summary page, review the information about the
certificate, and then click Next.
12. On the Completing the Web Server Certificate Wizard page, click
Finish, and then click OK.
Anybody know why this is the case?
ii) I suspect (possibly incorrectly) that I might not have a certificate
installed in the Windows 2003 certificate store. I was able to generate,
issue, and store a certificate in a .cer file. However, what oid (i.e.
usage) should I use for the certificate generation? Currently I'm using
1.3.6.1.4.1.311.2.1.21, which represents a client-browser certificate. Is
this correct for what I'm trying to do? Also, once the certificate is
generated, should I store it under the 'personal' folder?
Any feedbacks that you guys can give me would be awesome and highly
appreciated!
Thanks,
Paul |
|
| Back to top |
|
 |
Steve Riley [MSFT]
Guest
|
| Posted:
Mon Dec 27, 2004 4:25 am Post subject:
Re: Need help with HTTPS |
|
|
You need a certificate with the "server authentication" purpose. You also
need to have a private key associated with the certificate. Since you're
using .CER file, you are lacking the private key.
What are you using to generate your certificate with?
Steve Riley
steriley@microsoft.com
| Quote: | Hey all
I'm new at this, so please bear with me.
Basically, I'm trying to set things up so that clients would connect
to my
asp.net web site (.aspx) vias https.
I have been following the following links closely to accomplish this:
http://support.microsoft.com/kb/816794
http://support.microsoft.com/default.aspx?scid=kb;en-us;324069
My problem (as far as I know) is two-fold:
i) I am unable to select the 'Server Certificate' (it is shaded out)
when I
follow the steps below as outlined in one of the links above:
Assign the Imported Certificate to the Web Site
1. Click Start, point to Administrative Tools, and then click
Internet
Information Services (IIS) Manager.
2. In the left pane, click your server.
3. In the right pane, double-click Web Sites.
4. In the right pane, right-click the Web site you want to
assign the
certificate to, and then click Properties.
5. Click Directory Security, and then click Server Certificate.
6. On the Welcome to the Web Certificate Wizard page, click
Next.
7. On the Server Certificate page, click Assign an existing
certificate, and then click Next.
8. On the Available Certificates page, click the installed
certificate
you want to assign to this Web site, and then click Next.
9. On the SSL Port page, configure the SSL port number. The
default
port of 443 is appropriate for most situations.
10. Click Next.
11. On the Certificate Summary page, review the information
about the
certificate, and then click Next.
12. On the Completing the Web Server Certificate Wizard page,
click
Finish, and then click OK.
Anybody know why this is the case?
ii) I suspect (possibly incorrectly) that I might not have a
certificate installed in the Windows 2003 certificate store. I was
able to generate, issue, and store a certificate in a .cer file.
However, what oid (i.e. usage) should I use for the certificate
generation? Currently I'm using 1.3.6.1.4.1.311.2.1.21, which
represents a client-browser certificate. Is this correct for what I'm
trying to do? Also, once the certificate is generated, should I store
it under the 'personal' folder?
Any feedbacks that you guys can give me would be awesome and highly
appreciated!
Thanks,
Paul |
|
|
| Back to top |
|
|
paul
Guest
|
| Posted:
Wed Dec 29, 2004 1:10 am Post subject:
Re: Need help with HTTPS |
|
|
I'm using the Microsoft Certification Authority (Version: 5.2.3790.0). I'm
not using Active Directory, and I'm running this in my VPC (Virtual PC).
What should I do then?
"Steve Riley [MSFT]" <steriley@microsoft.com> wrote in message
news:13038632396679337371216@news.microsoft.com...
| Quote: | You need a certificate with the "server authentication" purpose. You also
need to have a private key associated with the certificate. Since you're
using .CER file, you are lacking the private key.
What are you using to generate your certificate with?
Steve Riley
steriley@microsoft.com
Hey all
I'm new at this, so please bear with me.
Basically, I'm trying to set things up so that clients would connect
to my
asp.net web site (.aspx) vias https.
I have been following the following links closely to accomplish this:
http://support.microsoft.com/kb/816794
http://support.microsoft.com/default.aspx?scid=kb;en-us;324069
My problem (as far as I know) is two-fold:
i) I am unable to select the 'Server Certificate' (it is shaded out)
when I
follow the steps below as outlined in one of the links above:
Assign the Imported Certificate to the Web Site
1. Click Start, point to Administrative Tools, and then click
Internet
Information Services (IIS) Manager.
2. In the left pane, click your server.
3. In the right pane, double-click Web Sites.
4. In the right pane, right-click the Web site you want to
assign the
certificate to, and then click Properties.
5. Click Directory Security, and then click Server Certificate.
6. On the Welcome to the Web Certificate Wizard page, click
Next.
7. On the Server Certificate page, click Assign an existing
certificate, and then click Next.
8. On the Available Certificates page, click the installed
certificate
you want to assign to this Web site, and then click Next.
9. On the SSL Port page, configure the SSL port number. The
default
port of 443 is appropriate for most situations.
10. Click Next.
11. On the Certificate Summary page, review the information
about the
certificate, and then click Next.
12. On the Completing the Web Server Certificate Wizard page,
click
Finish, and then click OK.
Anybody know why this is the case?
ii) I suspect (possibly incorrectly) that I might not have a
certificate installed in the Windows 2003 certificate store. I was
able to generate, issue, and store a certificate in a .cer file.
However, what oid (i.e. usage) should I use for the certificate
generation? Currently I'm using 1.3.6.1.4.1.311.2.1.21, which
represents a client-browser certificate. Is this correct for what I'm
trying to do? Also, once the certificate is generated, should I store
it under the 'personal' folder?
Any feedbacks that you guys can give me would be awesome and highly
appreciated!
Thanks,
Paul
|
|
|
| Back to top |
|
|
David Wang [Msft]
Guest
|
| Posted:
Tue Jan 04, 2005 2:54 pm Post subject:
Re: Need help with HTTPS |
|
|
Be acquainted with the following tools:
SSLDiag - diagnose all SSL-related errors on IIS
http://www.microsoft.com/downloads/details.aspx?FamilyID=cabea1d0-5a10-41bc-83d4-06c814265282&DisplayLang=en
SelfSSL - useful to test out SSL functionality without buying any server
certificates (nor do you need to know how to generate your own
certificates). Run a single command, and SSL works on the website.
http://www.microsoft.com/downloads/details.aspx?FamilyID=56fc92ee-a71a-4c73-b628-ade629c89499&DisplayLang=en
--
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"paul" <boloh77@hotmail.com> wrote in message
news:O9e%23pDR7EHA.4072@TK2MSFTNGP10.phx.gbl...
I'm using the Microsoft Certification Authority (Version: 5.2.3790.0). I'm
not using Active Directory, and I'm running this in my VPC (Virtual PC).
What should I do then?
"Steve Riley [MSFT]" <steriley@microsoft.com> wrote in message
news:13038632396679337371216@news.microsoft.com...
| Quote: | You need a certificate with the "server authentication" purpose. You also
need to have a private key associated with the certificate. Since you're
using .CER file, you are lacking the private key.
What are you using to generate your certificate with?
Steve Riley
steriley@microsoft.com
Hey all
I'm new at this, so please bear with me.
Basically, I'm trying to set things up so that clients would connect
to my
asp.net web site (.aspx) vias https.
I have been following the following links closely to accomplish this:
http://support.microsoft.com/kb/816794
http://support.microsoft.com/default.aspx?scid=kb;en-us;324069
My problem (as far as I know) is two-fold:
i) I am unable to select the 'Server Certificate' (it is shaded out)
when I
follow the steps below as outlined in one of the links above:
Assign the Imported Certificate to the Web Site
1. Click Start, point to Administrative Tools, and then click
Internet
Information Services (IIS) Manager.
2. In the left pane, click your server.
3. In the right pane, double-click Web Sites.
4. In the right pane, right-click the Web site you want to
assign the
certificate to, and then click Properties.
5. Click Directory Security, and then click Server Certificate.
6. On the Welcome to the Web Certificate Wizard page, click
Next.
7. On the Server Certificate page, click Assign an existing
certificate, and then click Next.
8. On the Available Certificates page, click the installed
certificate
you want to assign to this Web site, and then click Next.
9. On the SSL Port page, configure the SSL port number. The
default
port of 443 is appropriate for most situations.
10. Click Next.
11. On the Certificate Summary page, review the information
about the
certificate, and then click Next.
12. On the Completing the Web Server Certificate Wizard page,
click
Finish, and then click OK.
Anybody know why this is the case?
ii) I suspect (possibly incorrectly) that I might not have a
certificate installed in the Windows 2003 certificate store. I was
able to generate, issue, and store a certificate in a .cer file.
However, what oid (i.e. usage) should I use for the certificate
generation? Currently I'm using 1.3.6.1.4.1.311.2.1.21, which
represents a client-browser certificate. Is this correct for what I'm
trying to do? Also, once the certificate is generated, should I store
it under the 'personal' folder?
Any feedbacks that you guys can give me would be awesome and highly
appreciated!
Thanks,
Paul
|
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in