Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

How to create a self-signed wildcard SSL certificate for IIS 6?

I'm trying to create a self-signed wildcard SSL certificate for use on a number of development and test servers running IIS 6. Following various guides has led to a couple ways of generating the certificates, but I haven't had any luck getting it to work. The most successful ways I've had were following this OpenSSL guide and using makecert.exe like so:

makecert.exe -r -b 01/01/2009 -e 01/01/2042 -sr LocalMachine -ss MY -a sha1 -n CN="*.example.com" -sky exchange -pe -eku 1.3.6.1.5.5.7.3.1 -sy 12 -sp "Microsoft RSA SChannel Cryptographic Provider" wildcard.cer

 

Both of which generate certificates that IIS 6 will accept, but when I actually try to view the site I get the following error in firefox:

Data Transfer Interrupted

The connection to dev.example.com was interrupted while the page was loading.

IE just gives:

Internet Explorer cannot display the webpage

Most likely causes:

  • You are not connected to the Internet.
  • The website is encountering problems.
  • There might be a typing error in the address.

This error happens whether I try to access it by domain name, machine name, localhost, local ip, or loopback ip.

So...how can I create a self-signed wildcard cert that IIS 6 will work with? Or how can I fix the problems I'm experiencing with the ones I've already created?

like image 453
phloopy Avatar asked Jan 23 '09 21:01

phloopy


People also ask

How do I create a wildcard certificate in IIS?

The IIS Wildcard Binding ProcessClick Start, then select Administrative Tools and then Internet Information Services Manager. Select Server Name, then Sites, then click on your SSL-based site. In the Actions section, click Binding. In the Binding section, if necessary, select Add and change the type to HTTPS.

How do you create self-signed SSL in IIS?

In IIS Manager, do the following to create a self-signed certificate: In the Connections pane, select your server in the tree view and double-click Server Certificates. In the Actions pane, click Create Self-Signed Certificate. Enter a user-friendly name for the new certificate and click OK.

How create SSL certificate IIS 6?

New: IIS 5/6 CSR video walkthroughRight-click on the website you are securing, and select Properties. Click on the Directory Security tab, and hit the Server Certificate button. Click next. Choose 'Create a new certificate' and hit next.


2 Answers

You can use the IIS 6 Resource Kit provided by MS, an command line app called SelfSSL. It can generate the SSL key and import it into your IIS installation.

IIS 6 Resource Kit

like image 190
MattGWagner Avatar answered Sep 28 '22 05:09

MattGWagner


you can do a wildcard certificate with *.domain.local and multiple ssl protocols by using the c:\inetpub\adminscripts adsutil.vbs set w3svc[siteid]\SecureBindings ":443:name.domain.local"

like image 36
Christopher Dix Avatar answered Sep 28 '22 04:09

Christopher Dix