Versions Compared

Old Version 11

changes.mady.by.user Document Admin

Saved on

compared with

New Version 12

changes.mady.by.user Document Admin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

As an example, it is assumed you want to bind the HTTPS server to IP address

Keywordmacro
Label192.168.0.179
using port
Keywordmacro
Label8443443
.  Change these values to suit your own requirements.

...

An endpoint is a combination of an IP address and a port number.  In our example, the endpoint is 

Keywordmacro
Label192.168.0.179:8443443
.

To see which endpoints are currently bound to which certificates, issue the following command:

...

Code Block
titleExample output
themeRDark
languagenone
SSL Certificate bindings:
-------------------------
    IP:port                 : 192.168.0.179:443
    Certificate Hash        : 00112233445566778899aabbccddeeff00112233
    Application ID          : {aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee}
    Certificate Store Name  : MY
    Verify Client Certificate Revocation    : Enabled
    Verify Revocation Using Cached Client Certificate Only    : Disabled
    Usage Check    : Enabled
    Revocation Freshness Time : 0
    URL Retrieval Timeout   : 0
    Ctl Identifier          :
    Ctl Store Name          :
    DS Mapper Usage    : Disabled
    Negotiate Client Certificate    : Disabled

    IP:port                 : 192.168.0.179:8443
    Certificate Hash        : 112233445566778899aabbccddeeff0011223344
    Application ID          : {00000000-1111-2222-3333-444444444444}
    Certificate Store Name  : (null)
    Verify Client Certificate Revocation    : Enabled
    Verify Revocation Using Cached Client Certificate Only    : Disabled
    Usage Check    : Enabled
    Revocation Freshness Time : 0
    URL Retrieval Timeout   : 0
    Ctl Identifier          : (null)
    Ctl Store Name          : (null)
    DS Mapper Usage    : Disabled
    Negotiate Client Certificate    : Disabled

The

Keywordmacro
LabelCertificate Hash
is the thumbnail of the certificate that an endpoint is bound to.

...

Code Block
titleRemoving an existing binding
themeRDark
languagenone
 
netsh http delete sslcert ipport=192.168.0.179:8443443
 

Once you are sure your endpoint is no longer bound to a certificate, add a new binding:

Code Block
titleAdding a new binding
themeRDark
languagenone
 
netsh http add sslcert ipport=192.168.0.179:8443443 certhash=0011223344556677889900112233445566778899 appid={ecc39c98-e826-4009-9401-2a5c6e7babbc}
 

...

Code Block
titlesettings.xml
themeRDark
languagehtml/xml
...
    <web>
        <bindAddress>192.168.0.179</bindAddress>
        <protocol>https</protocol>
        <port>8443<<port>443</port>
        <username>xxxxxxxxxx</username>
        <password>xxxxxxxxxx</password>
    </web>
...

...