Browse by Tags

Tagged Content List
  • Blog Post: SSL Diagnostics for IIS 6 (Windows Server 2003)

    SSL Diagnostics tool for Windows Server 2003 is no longer available for download on TechNet . I had to ping my peers to who had a copy of the tool which they had downloaded earlier. Main stream support Windows Server 2003 ended in 2010 , while extended support will end next year in 2015 . Click here...
  • Blog Post: SSL Handshake and HTTPS Bindings on IIS

    Secure Socket Layer ( SSL ) also known as Transport Layer Security ( TLS ) is a cryptographic protocol which defines how 2 entities (client and server) communicate with each other securely. TLS is the successor of SSL. You can read more about it here: http://en.wikipedia.org/wiki/Transport_Layer_Security...
  • Blog Post: Windows Azure Web Sites : Cannot upload a Self-Signed Certificate created with PowerShell

    As SSL functionality was added to Windows Azure Web Sites , I started playing around with it. I was trying to upload self-signed certificates when I ran into a issue. I created a self-signed certificate using Windows PowerShell ISE ( New-SelfSignedCertificate Module ) . Below is a snippet of the command...
  • Blog Post: Working with Wild Card Certificates

    Yesterday one of my colleagues came up to me with a simple problem regarding wild card certificates. I gave him the solution immediately, but it had to take a lot of convincing to do. This shows that there is a lot of confusion around how wild card certificates work. For first time readers, wildcard...
  • Blog Post: Windows Azure Web Sites: SSL Support and configuration

    Finally in the first week of June 2013, it has been announced that Windows Azure Web Sites will provide native support for SSL , which includes both SNI SSL and IP based SSL for custom web site domain names. This feature was one which took some time to be implemented and finally has been introduced....
  • Blog Post: Difference in IIS 6, IIS 7.x and IIS 8 with regards to SSL

    There were lot of differences with regards to SSL moving from IIS 6 to IIS 7.x and then to IIS 8 . IIS 6 in itself was a breaking change, however there were lot of limitations and they were addressed in higher versions. I will try to pen down as I remember them and will update the blog if I come across...
  • Blog Post: Disable Client Certificate Revocation (CRL) Check on IIS

    I have been asked this question on several occasions on how to disable revocation check in IIS 7.  It was pretty easy for IIS 6, on IIS 7 there is no documentation on how to do so. This post will describe on how to achieve this task. Firstly, list out all the existing IIS bindings via command line...
  • Blog Post: Central Certificate Store (CCS) with IIS 8 (Windows Server 2012)

    In my previous posts on IIS 8, I discussed how scalability was  achieved in IIS 8 via SNI. Below are the links to previous posts:                   ·          SSL Scalability...
  • Blog Post: Error HRESULT: 0x80070520 when adding SSL binding in IIS

    Today I will be discussing the very infamous error that is seen while adding a SSL binding in IIS 7 & higher. Below is a snapshot of the error message while trying to add the SSL binding in IIS. Well, the error is definitely not descriptive enough, neither does it provide any vital information to...
  • Blog Post: SSL Scalability with IIS 8 (Windows 8 Server)

    Kaushal Kumar Panday Kaushal Kumar Panday 4 49 2012-08-08T07:40:00Z 2012-08-08T08:29:00Z 1 722 4119 34 9 4832 15.00 Clean Clean false false false false EN-IN X-NONE X-NONE ...
  • Blog Post: Client Certificates V/s Server Certificates

    In the past I have blogged about various certificate file extensions along with their usage. Here is the link: http://blogs.msdn.com/b/kaushal/archive/2010/11/05/ssl-certificates.aspx I use blogs as reference so that they can refer the content and I need not repeat the same thing every time. Saves time...
  • Blog Post: Taming the Beast (Browser Exploit Against SSL/TLS)

    Two researchers recently discovered a known vulnerability that existed in CBC based ciphers, but was considered theoretically impractical, until then. This vulnerability exists in all CBC based ciphers used in SSL V3/TLS 1.0 . The researchers Juliano Rizzo and Thai Duong demonstrated proof-of-concept...
  • Blog Post: Support for SSL/TLS protocols on Windows

            Secure Socket Layer ( SSL ) and its successor Transport Layer Security ( TLS ) are protocols which use cryptographic algorithms to secure the communication between 2 entities. It is just a secure layer running on top of HTTP.            ...
  • Blog Post: Various SSL/TLS Certificate File Types/Extensions

    Its not easy to determine by looking at a file extension whether it would carry a certificate or not. I am writing this article to help myself . Next time I can directly jump to my blog instead searching endlessly what does a specific file extension corresponds to. I will be discussing file extensions...
Page 1 of 1 (14 items)