Office Web Apps - SSL Certificate Settings deleted for endpoint : 0.0.0.0:443RSS

2 replies

Last post Jun 11, 2020 06:35 PM by NedStark

  • Office Web Apps - SSL Certificate Settings deleted for endpoint : 0.0.0.0:443

    Oct 24, 2018 03:13 PM|JakQK|LINK

    Hello,

    we have a problems with Microsoft Office Web Apps running on Windows Server 2012R2.

    There are Microsoft Office Web Apps installed and every time the server is restarted, SSL certificate bound to the IIS site and specific binding (named HTTP80) is deleted, so one has to go and manually set the certificate on the site.

    I was able to find one similar problem:

    https://support.microsoft.com/en-us/help/2025598/https-connections-fail-and-ssl-bindings-are-deleted-for-a-website-in-i

    but this is not the case - there is no such key in ApplicationHost config.

    Event logs only specify that the IIS was killed, SSL certificate deleted and IIS was brought back on right after / during the start of the OS...

    Any suggestions?

    Thanks,

    Jakub

  • Re: Office Web Apps - SSL Certificate Settings deleted for endpoint : 0.0.0.0:443

    Oct 24, 2018 08:56 PM|lextm|LINK

    https://blogs.msdn.microsoft.com/saurabh_singh/2010/05/11/ssl-bindings-are-randomly-getting-deleted-for-a-website-with-error-ssl-certificate-settings-deleted-for-port-x-x-x-x443-in-the-event-logs-iis-7-07-5/

    If you scroll down to comments, you might see other keys that trigger the same issue.

    Go back to your applicationHost.config and see if you can find similar keys, remove them and test out.

    Ideally, open a support case via http://support.microsoft.com and consult Microsoft directly.

    Lex Li
    Affordable IIS Consulting Services at https://support.lextudio.com/services/consulting.html
    ---------------------------
    This posting is provided "AS IS" with no warranties, and confers no rights.
  • Re: Office Web Apps - SSL Certificate Settings deleted for endpoint : 0.0.0.0:443

    Jun 11, 2020 06:35 PM|NedStark|LINK

    If the other answer (property id) doesn't work, follow these steps:

    • Check if there is an antivirus software in the server. Look for especially HIPS feature. Disable the antivirus and try to reproduce the issue
    • Check if the site is using a wildcard certificate. This issue occurs when the wildcard certificate has been imported without marking the keys as exportable. In order to solve it, the affected certificate should be uninstalled and it should be imported back again with marking the keys as exportable
    • Look for System Center Virtual Machine Manager Agent in the server. If it is enabled in the server, disable it and try to reproduce the issue (Reference)
    • Another process might be using 443 port in the server (Example: Windows Admin Center. Check this post out: 503 Service Unavailable error related to Windows Admin Center)
    • Check if insecure protocols are enabled. Registry settings are below. Disable these protocols if they are enabled and try to reproduce the issue

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Server HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Client HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Server HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Client

    Source: SSL Certificate Settings deleted for endpoint (Event ID 15300)