locked
The security certificate presented by this website was not issued by a trusted certificate authority.

    Question

  • HI. I am using ISA 2006 with windows 2003 std sp2. I published a website on the server with https but get the error above. when i surf the website on the webserver it works fine but not when i surf it from the isa server or external. When I test the rule it give me the error below:

    Testing URL https://myhost.mysite.com:6443/
    Category: Published server certificate error
    Error details: 0x80090325 - The certificate chain was issued by an authority that is not trusted.
    Action: Go to http://go.microsoft.com/fwlink/?LinkId=115965

    The site is published on port 6443 on both the isa server and the web server. The digicert root authority certificate is installed in the "trusted root authority ceritifcates" container on both servers. The certificate *.mysite.com is installed on the "personal" container on both servers and on the IIS website on the webserver.

    Any ideas are welcome. thank you.
    Morné Fourie AFRIDATA.net Cell: +27 83 283 5893 Office: +27 83 283 5893 Fax: 086 658 5062 Email: morne@afridata.net
    Tuesday, August 18, 2009 6:30 AM

Answers

  • Hi,

    plaese check if the certificate chain is completly downloaded and available in the certificate store of the computer. If Digicert is issuing certificates with multiple CA hierarchies, please also check if the intermediate CA certs are also available.

    regards Marc
    www.nt-faq.de
    www.it-training-grote.de
    • Marked as answer by Morris Fury Tuesday, August 18, 2009 11:33 AM
    Tuesday, August 18, 2009 11:18 AM

All replies

  • Hi,

    plaese check if the certificate chain is completly downloaded and available in the certificate store of the computer. If Digicert is issuing certificates with multiple CA hierarchies, please also check if the intermediate CA certs are also available.

    regards Marc
    www.nt-faq.de
    www.it-training-grote.de
    • Marked as answer by Morris Fury Tuesday, August 18, 2009 11:33 AM
    Tuesday, August 18, 2009 11:18 AM
  • Hi Marc. I spoke with Digicert and the problem was due to the incorrect cert being installed under the intermediaries container. Thanks for your info and reply.
    Morné Fourie AFRIDATA.net Cell: +27 83 283 5893 Office: +27 83 283 5893 Fax: 086 658 5062 Email: morne@afridata.net
    Tuesday, August 18, 2009 11:33 AM