IIS 7 and Above
Known Issues and Workarounds
Digital Certificate Fail to Bind in IIS 7
Last post Sep 19, 2018 02:17 PM by lextm
Sep 19, 2018 01:25 AM|akmalaa|LINK
I'm having a problem to bind the newly imported certificates (.pfx) to https port 443. It keeps on pointing to either "Not selected" or to the previous certificate (which is already expired by the way). I've tried all of the methods below but the result
is still the same;
Method 1: Removing the old certificates without removing the new certificate.
Result: Fail. Even worst, my webpage can’t be displayed at all. Stop/Start the IIS service also produced the same result.
Method 2: Removing all the certificates including the previous and the new one. Then, import and apply just the new certificate. Result: Fail. Even worst, my webpage can’t be displayed at all. Stop/Start the IIS service also produced the same result.
Method 3: Import the new certificate without removing all the previous certificate.
Result: Webpage can be displayed and logged in, but with the red alert message in the URL saying about the certification error because IIS bind to the old certificate.
Method 4: Do all the Method 1-3. Stop the IIS service. Restart all the servers. Start the IIS service.
Result: Fail as in Method 1 – 3 above.
Method 5: Delete and create a new Site Bind in IIS for https with/without the hostname.
Method 6: Import and install the certificate manually via mmc. The new certificate is placed into the Personal Certificate and Trusted Certificate group.
Thus, can anyone advice me on how to tackle this bind issue in IIS7? Thanks
Sep 19, 2018 02:17 PM|lextm|LINK
You might use SSL Diag and HTTP API features of Jexus Manager to further analyze the certificate mappings in HTTP API and the site bindings in IIS,
It would be difficult to tell the exact cause without accessing the actual machine.