CEICW fails on create on create secure web site configuration
- From: mike_engle@xxxxxxxxxxxx
- Date: Tue, 12 Jun 2007 12:39:03 -0700
I have an SBS2k3 install where the ISP required a change to the fixed
IP address.
This is a SBS Premium with ISA 2004. 2 nic's, 1 internal and the
other connecting to a router which connects to the internet.
I remotely logged into the server, and connected to the router and
changed its settings on the internet side. IP address and DNS
settings. The Inside (LAN) was not changed. The servers external NIC
was not changed and remains static. (192.168.1.5). After I applyed
this change, I was disconnected from the server, as was to be
expected.
I waited a couple of minutes to let the router finish up and tried to
remote to the server again. I got the Certifcate, It indicated that
it was self issued and that the IP did not match, again, as I
expected, but when I continued, The page could not be displayed, error
code 403 forbidden.
I went on site the next day and ran the CEICW, adding the new DNS as
forwarders, and creating a new certificate with the new IP address.
The Wizard failed during the Secure Web Site Configuration. I was
given the option to continue or cancel.
The icwlog.txt has the following errors
***saving the cert for clients returned ERROR 80070015
***CCertCommit::EnableSSL returned ERROR 80070015
***CCertCommit::CommitEx returned ERROR 80070015
Nothing else looked like an error to me.
The last time I had run this wizard previously was Feb 21 3007, and it
worked then, although I probably did not create a new certificate
then.
I have not applied Windows 2003 SP2 or IE 7 this machine, But it is up
to date on patches as far as I know (not including the ones that came
out today)
I am not doing anything fancy with this setup, It was probably
upgraded from SBS 2000, and ISA 2000, although I don't remember if I
did a clean install of SBS2003 or a migration.
I have run the CEICW many times, and tried using both
servername.domain.com and servername.domain.local. all failed. The
last time I went back to the IP address.
When I attempt remote access now, the certificate does not complain
about the IP being different, but it gives a different error when I
attempt to go on to the web page.
The New error is Error Code 500 Internal Server Error, The certificate
chain was issued by an authority that is not trusted (-2146893019)
Any Ideas as to why this is not working the way we expect it to, And
what I can do to fix it. Internet access and email continue to work
fine, so business can go on, But I cannot access remotely.
Thanks for any help you may have.
Mike
.
- Follow-Ups:
- RE: CEICW fails on create on create secure web site configuration
- From: Terence Liu [MSFT]
- RE: CEICW fails on create on create secure web site configuration
- Prev by Date: Re: WSS 3.0 question
- Next by Date: RE: Companyweb no longer works
- Previous by thread: Hacked?
- Next by thread: RE: CEICW fails on create on create secure web site configuration
- Index(es):
Relevant Pages
|
