Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
HTTPS with Intraweb
#11
Hello,

Thank you to try to help me.

I always have the same problem even with Httpsys. HTTPS doesn't work ... 
-> Google Chrome error : This site is unreachable <<DomainName>> does not allow the connection.

I write here what I do step by step. Maybe someone will see what is missing.

My program is a 32bit application and I install it as a windows service on a server with Windows server 2016 (64 bits) without IIS.
 
I buy my certificate for my domain name and install it.

(Import it into the Windows certificate store; and then bind that certificate to port 443)
On Chrome I see it in Parameters> SSL > Certificate > Other People.

I put libeay32.dll and ssleay32.dll (32 bits) and root.pem , cert.pem and key.pem on the same folder of my exe.
Create an inbound rules for port 443. 
Install my service and start it.

-> HTTP works and HTTPS don't.


When I do netstat command on my server, I see my application is listening on port 80 but not on port 443...

There is a way to see if SSL is correcty install on my server and see what's wrong? 
Because if we juste have to put 2 dlls and change SSL Options I think the problem comes from the server configuration / certificate installation and not from the .exe.
Reply
#12
Can you telnet on 443 on the hosted machine using local host? Is IIS on the same machine?
Reply
#13
(10-08-2019, 03:03 PM)kudzu Wrote: Can you telnet on 443 on the hosted machine using local host? Is IIS on the same machine?

Connect failed on 443 with telnet ...
It works on 80.

IIS isn't install on the machine.
Nothing is listening on 443.
Reply
#14
Did you telnet on local host on the machine to 443 or tried from another machine?
Reply
#15
(10-08-2019, 09:53 PM)kudzu Wrote: Did you telnet on local host on the machine to 443 or tried from another machine?

I do on local host (directly on my server)...
Reply
#16
Hi, did you set the port on your ServerController - SSLOptions - Port?
Open Powershell and execute this command: "http show sslcert" | netsh
You see something like this:
Code:
Nome do host:porta                : fidelidade.jnp.com.br:443
Hash de Certificado             : 3580eeb2...0afae6a
ID do Aplicativo               : {ffb1e063-...-7d8e5a343e9f}
Nome do Repositório de Certificados       : my
Verificar Revogação de Certificado de Cliente: Enabled
Verificar Revogação Usando Apenas Certificado de Cliente Armazenado em Cache: Disabled
Verificação de Uso                  : Enabled
Tempo de Atualização da Revogação    : 0
Tempo Limite de Recuperação de URL        : 0
Identificador de Ctl               : (null)
Nome do Repositório de Ctl               : (null)
Uso do Mapeador de DS              : Disabled
Negociar Certificado de Cliente: Disabled
Rejeitar Conexões           : Disabled
Desabilitar HTTP2                : Not Set

This is one of my http.sys running.
Reply
#17
(10-09-2019, 11:18 AM)Jose Nilton Pace Wrote: Hi, did you set the port on your ServerController - SSLOptions - Port?
Open Powershell and execute this command: "http show sslcert" | netsh
You see something like this:
Code:
Nome do host:porta                : fidelidade.jnp.com.br:443
Hash de Certificado             : 3580eeb2...0afae6a
ID do Aplicativo               : {ffb1e063-...-7d8e5a343e9f}
Nome do Repositório de Certificados       : my
Verificar Revogação de Certificado de Cliente: Enabled
Verificar Revogação Usando Apenas Certificado de Cliente Armazenado em Cache: Disabled
Verificação de Uso                  : Enabled
Tempo de Atualização da Revogação    : 0
Tempo Limite de Recuperação de URL        : 0
Identificador de Ctl               : (null)
Nome do Repositório de Ctl               : (null)
Uso do Mapeador de DS              : Disabled
Negociar Certificado de Cliente: Disabled
Rejeitar Conexões           : Disabled
Desabilitar HTTP2                : Not Set

This is one of my http.sys running.

Yes I put 443 in SSL Port Option.

I see that when I execute your command : 

Code:
SSL Certificate bindings:
-------------------------

    IP:port                      : 51. ... .122:443
    Certificate Hash            : 9e525e5c ... 864ac7c36f
    Application ID              : {b6eb079d ... a43a6}
    Certificate Store Name      : my
    Verify Client Certificate Revocation : Enabled
    Verify Revocation Using Cached Client Certificate Only : Disabled
    Usage Check                  : Enabled
    Revocation Freshness Time    : 0
    URL Retrieval Timeout        : 0
    Ctl Identifier              : (null)
    Ctl Store Name              : (null)
    DS Mapper Usage              : Disabled
    Negotiate Client Certificate : Disabled
    Reject Connections          : Disabled
    Disable HTTP2                : Not Set

When I do 'netstat -anb' on command prompt the .exe (generate as a a windows service) doesn't listen on 443 (just listen on 80) ...
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)