Using SNI on Windows Server 2012 R2 not working
Answering this on behalf of Shane Madden and s093294
Shane: I wonder if the non-SNI bind on that IP is making a difference for some reason.. Any change if that binding is disabled?
s093294: Okay. That was the problem. I removed it with netsh http delete
. Now I just need to figure out why it was there in the first place. Its an automated setup that deploys a machine on azure cloud services.
Related videos on Youtube
Poul K. Sørensen
https://www.linkedin.com/in/pksorensen/ I can provide you with Azure, D365 and Sharepoint consultants. I work myself with Azure :)
Updated on September 18, 2022Comments
-
Poul K. Sørensen almost 2 years
I am trying to get both my sites running with their seperate certificates on a Windows Server 2012 R2.
Should this not be possible?
On the last added site www.c1get.net I get the certificate from the first site and a warning therefore.
Update
SSL Certificate bindings: ------------------------- IP:port : 0.0.0.0:443 Certificate Hash : fabae896e032f9ba08b389d8c9ecd33908fabe31 Application ID : {4dc3e181-e14b-4a21-b022-59fc669b0914} Certificate Store Name : My Verify Client Certificate Revocation : Enabled Verify Revocation Using Cached Client Certificate Only : Disabled Usage Check : Enabled Revocation Freshness Time : 0 URL Retrieval Timeout : 0 Ctl Identifier : (null) Ctl Store Name : (null) DS Mapper Usage : Disabled Negotiate Client Certificate : Disabled IP:port : 100.88.158.59:443 Certificate Hash : 09ee7268be2509e3262dcae9df10563dce265bd3 Application ID : {4dc3e181-e14b-4a21-b022-59fc669b0914} Certificate Store Name : MY Verify Client Certificate Revocation : Enabled Verify Revocation Using Cached Client Certificate Only : Disabled Usage Check : Enabled Revocation Freshness Time : 0 URL Retrieval Timeout : 0 Ctl Identifier : (null) Ctl Store Name : (null) DS Mapper Usage : Disabled Negotiate Client Certificate : Disabled Hostname:port : owindemo.s-innovations.net:443 Certificate Hash : 09ee7268be2509e3262dcae9df10563dce265bd3 Application ID : {4dc3e181-e14b-4a21-b022-59fc669b0914} Certificate Store Name : My Verify Client Certificate Revocation : Enabled Verify Revocation Using Cached Client Certificate Only : Disabled Usage Check : Enabled Revocation Freshness Time : 0 URL Retrieval Timeout : 0 Ctl Identifier : (null) Ctl Store Name : (null) DS Mapper Usage : Disabled Negotiate Client Certificate : Disabled Hostname:port : demo009.s-innovations.net:443 Certificate Hash : 09ee7268be2509e3262dcae9df10563dce265bd3 Application ID : {4dc3e181-e14b-4a21-b022-59fc669b0914} Certificate Store Name : My Verify Client Certificate Revocation : Enabled Verify Revocation Using Cached Client Certificate Only : Disabled Usage Check : Enabled Revocation Freshness Time : 0 URL Retrieval Timeout : 0 Ctl Identifier : (null) Ctl Store Name : (null) DS Mapper Usage : Disabled Negotiate Client Certificate : Disabled Hostname:port : www.s-innovations.net:443 Certificate Hash : 09ee7268be2509e3262dcae9df10563dce265bd3 Application ID : {4dc3e181-e14b-4a21-b022-59fc669b0914} Certificate Store Name : My Verify Client Certificate Revocation : Enabled Verify Revocation Using Cached Client Certificate Only : Disabled Usage Check : Enabled Revocation Freshness Time : 0 URL Retrieval Timeout : 0 Ctl Identifier : (null) Ctl Store Name : (null) DS Mapper Usage : Disabled Negotiate Client Certificate : Disabled Hostname:port : www.c1get.net:443 Certificate Hash : fabae896e032f9ba08b389d8c9ecd33908fabe31 Application ID : {4dc3e181-e14b-4a21-b022-59fc669b0914} Certificate Store Name : My Verify Client Certificate Revocation : Enabled Verify Revocation Using Cached Client Certificate Only : Disabled Usage Check : Enabled Revocation Freshness Time : 0 URL Retrieval Timeout : 0 Ctl Identifier : (null) Ctl Store Name : (null) DS Mapper Usage : Disabled Negotiate Client Certificate : Disabled
-
bbRLdev over 7 yearsHad the same issue with Azure cloud service deploy and SNI config. I know it's very old quesiton, but any luck with figuring out what was the reason for default records in
netsh http sslcert
? -
Lex Li almost 4 yearsSounds like a comment, not an answer.