Wild Card SSL cert with alias domainRSS

2 replies

Last post Mar 29, 2018 01:12 PM by lextm

  • Wild Card SSL cert with alias domain

    Mar 28, 2018 06:45 PM|rmellnick|LINK

    Not sure how to ask this or describe this but here goes.

    there are dns entries pointing https://obapp.abc.com to the correct IP address

    SSL wild card cert that is set for *.abc.com 

    IIS server lives on domain xyz.local

    IIS server name is abc123

    when I try to access the site using https://obapp.abc.com/startpage

    I get a login prompt from IE

    I have the site in local intranet zone

    I have the custom setting set to auto logon

    Is this possible? I'm used to seeing wild card certs like *.xyz.local not set to an alias

    Thanks in advance

    Russ

  • Re: Wild Card SSL cert with alias domain

    Mar 29, 2018 10:03 AM|Yuk Ding|LINK

    Hi rmellnick,

    Could you access the site under basic authentication? Secondly, could you see the auth information in fiddler. Is obapp.abc.com a public domain? I'm not familiar with IIS dns. How did you add the abc.com to your xyz.com DNS zone? Use a different domain for authentication may cause some Kerberos authentication issue.

    Best Regards,

    Yuk Ding

    Yuk Ding

    MSDN Community Support
    Please remember to "Mark as Answer" the responses that resolved your issue.
  • Re: Wild Card SSL cert with alias domain

    Mar 29, 2018 01:12 PM|lextm|LINK

    Review every words of this KB article,

    https://support.microsoft.com/en-us/help/258063/internet-explorer-may-prompt-you-for-a-password

    and also use a tool such as Fiddler to investigate further into the requests/responses. IE can prompt not only for failed authentication, but possibly others, so only tools like Fiddler can tell more about the prompt.

    Lex Li
    Affordable IIS Consulting Services at https://support.lextudio.com/services/consulting.html
    ---------------------------
    This posting is provided "AS IS" with no warranties, and confers no rights.