« Previous Next »

• 11-05-2009, 2:24 PM

  Paul Schwartz Joined on 11-05-2009, 7:04 PM Posts 12

  Correct syntax to sync including SSL from IIS6 to IIS7 Reply Contact I'm not clear on the syntax for migrating a site with SSL. I couldn't find any samples and am trying to work from: http://learn.iis.net/page.aspx/427/migrate-from-iis-60-to-iis-70/ I checked and confirmed dependencies: msdeploy -verb:getDependencies -source:metakey=lm/w3svc/2023696167 <output> <dependencyInfo> <dependencies> <dependency name="AnonymousAuthentication" /> <dependency name="WindowsAuthentication" /> <dependency name="BasicAuthentication" /> </dependencies> <apppoolsInUse> <apppoolInUse name="DefaultAppPool" definitionIncluded="False" /> </apppoolsInUse> <isapis> <isapi dll="C:\WINNT\system32\inetsrv\httpodbc.dll" enabled="unknown" /> </isapis> </dependencyInfo> </output> When i go to follow Part 3, I get this error: msdeploy -verb:sync -source:metakey=lm/w3svc/2023696167 -dest:archivedir=c:\temp Info: Adding archiveDir (archiveDir). Info: Adding child metaKey (/lm/w3svc/2023696167). Info: Adding child metaProperty (/lm/w3svc/2023696167/SecureBindings). Info: Adding child metaProperty (/lm/w3svc/2023696167/ServerComment). Info: Adding child rootWebConfig32 (site.domain.com). Info: Adding child machineConfig32 (site.domain.com). Info: Adding child metaProperty (/lm/w3svc/2023696167/AllowKeepAlive). Info: Adding child metaProperty (/lm/w3svc/2023696167/AuthFlags). Info: Adding child metaProperty (/lm/w3svc/2023696167/LogFileLocaltimeRollover). Info: Adding child metaProperty (/lm/w3svc/2023696167/LogFilePeriod). Info: Adding child metaProperty (/lm/w3svc/2023696167/LogFileTruncateSize). Info: Adding child metaProperty (/lm/w3svc/2023696167/ServerAutoStart). Info: Adding child metaProperty (/lm/w3svc/2023696167/ServerState). Info: Adding child metaProperty (/lm/w3svc/2023696167/Win32Error). Info: Adding child metaProperty (/lm/w3svc/2023696167/KeyType). Info: Adding child metaProperty (/lm/w3svc/2023696167/LogPluginClsid). Info: Adding child metaProperty (/lm/w3svc/2023696167/SSLStoreName). Info: Adding child metaProperty (/lm/w3svc/2023696167/SSLCertHash). Info: Adding child cert (MY\cccccccccccccc8D507878900CF4E5). Error: The property 'blob' located at '/metaKey[@path='/lm/w3svc/2023696167']/metaProperty[@name='SSLCertHash']/cert' is marked as secure. You must specify an encryption password to archive this property. Error count: 1. I got my hash, replaced the space with a 0 as I read here: http://blogs.technet.com/uday/archive/2009/01/21/how-to-migrate-ssl-certificate-using-msdeploy.aspx httpcfg query ssl IP : 110.10.10.10:443 Hash : xxxxxxxxxxxxxxxxxxxx8ad28d507xxxxx cf4e5 Guid : {xxxxxxxx-e14b-4a21-b022-59fc669b0914} CertStoreName : MY I've tried a few combinations of syntax, done some searching and haven't found it yet. msdeploy -verb:sync -source:metakey=lm/w3svc/2023696167 -dest:archivedir=c:\temp cert=MY\ xxxxxxxxxxxxxxxxxxxx8ad28d507xxxxx0cf4e5 -dest:archiveddir=c:\temp encryptpassword=xxxxx

• 11-05-2009, 2:49 PM

  In reply to

  moshaikh Joined on 11-14-2008, 12:21 AM Posts 154

  Re: Correct syntax to sync including SSL from IIS6 to IIS7 Reply Contact The error that you are getting is a different one. All its asking you is to specify an encryption password when creating the archive as given below: msdeploy -verb:sync -source:metakey=lm/w3svc/2023696167 -dest:archivedir=c:\temp,encryptPassword=mypassword When you deploy the archivedir you would need to specify encryptpassword again. This is for your security since it has sensitive data. You can read more about encryptPassword with examples here

• 11-09-2009, 2:59 PM

  In reply to

  Paul Schwartz Joined on 11-05-2009, 7:04 PM Posts 12	Re: Correct syntax to sync including SSL from IIS6 to IIS7 Reply Contact Thanks for the fast reply. I was obviously over thinking it.