RE: Getting rid of a rogue SSl certificate

Tech-Archive recommends: Speed Up your PC by fixing your registry

From: Charles Yang [MSFT] (v-chayan_at_online.microsoft.com)
Date: 03/22/05 

Date: Tue, 22 Mar 2005 08:38:22 GMT

Hi Godfrey,
 
Welcome to this SBS newsgroup.
 
According to your description, I understand that you want to delete a rogue
certificate in the SBS 2003. If I am off base, please let me know.
 
Based on my research, I would like you follow the steps to remove the
certificate:
 
1. Open IIS Manager mmc
2. Right click the Properties of companyweb.
3. In the Drectory Security tab, click Server Certificate and select
Remove Certificate.
 
 
If above does not work.. you may try the following to at least be able to
remove the certificate information from the companyweb site.
2. Make a backup of the IIS metabase , (Open the IIS node in the
server management, then right click on the Server name and select All Task/
 Backup/Restore Configuration)
2. In the IIS node right click on the Server name then choose
properties check the box for Enable Direct Metabase Edit.
3. Open \%systemroot%\system32\inetsrv\metabase.xml in notepad.
4. Edit/find and search on SSLCertHash should find a reference in the
/lm/w3svc/1 location..Edit/copy the SSLCertHash line Find the SSLCertHash
under the companyweb site (should be /lm/w3svc/4) and replace the one that
is there with the one copied.
5. Save the files.
6. In the IIS node right click to choose the properties on the
servername and uncheck the box for Enable Direct Metabase Edit.
 
You should be able to now view the certificate on the companyweb
 
Hope the above information helps, if you have any issue, please let me
know. I am standing by to help you.

Best regards,

Charles Yang (MSFT)

Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security

=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================

This posting is provided "AS IS" with no warranties, and confers no rights.

Relevant Pages

  • RPC over HTTP, Microsoft solution
    ... Exchange Server 2003 RPC over HTTP Deployment Scenarios ... Place a check in the box next to 'Certificate Services' and click 'Yes' ...
    (microsoft.public.exchange.setup)
  • Re: OWA 2003 w/ Smart Card Authentication.
    ... Exchange 2003 server via ActivSync. ... the IIS certificate. ... Whether or not authentication will succeed is completely dictated by ... Server's SSL certificate must be configured on root of v-server via ...
    (microsoft.public.exchange.connectivity)
  • Re: Configuring SBS2003 for OWA and RWW
    ... And make sure certificate will not be ... On the Connection Type page, click Broadband, and then click Next. ... next to Preferred DNS server and next to ... If you are using ISA, please go to ISA management console, and navigate ...
    (microsoft.public.windows.server.sbs)
  • Re: Configuring LDAP on Entourage 2004 OS X
    ... Microsoft CSS Online Newsgroup Support ... does not work with a self signed SSL certificate OR with the SSL ... configure the System to allow OMA and "Server ActiveSync" access from the ... Configuring Exchange Server 2003 for Client Access. ...
    (microsoft.public.windows.server.sbs)
  • RE: Getting rid of a rogue SSl certificate
    ... > certificate in the SBS 2003. ... Right click the Properties of companyweb. ... click Server Certificate and select ... In the IIS node right click to choose the properties on the ...
    (microsoft.public.windows.server.sbs)