Certificate disappear

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: rhgw.redhammer.it

I ran this command:

It produced this output:

My web server is (include version): IIS 7

The operating system my web server runs on is (include version):Windows Server 2019

My hosting provider, if applicable, is:GoDaddy

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

Hi,

Not sure if this issue is regarding the LetsEncrypt Certificate or possibly a Windows Server issue, just want to share this in case it might really be on LetsEncrypt side.

We have 2 Remote Desktop Gateway servers and they're both configured with Microsoft Network Load Balance. On Oct 24, both servers performed Windows Updates and got rebooted. After the reboot I saw some event ID: 15300 related to SSL Certificate Settings deleted for endpoint: 0.0.0.0:443.

Only to discover that both server's certificate have been taken out and needs to be reimported back. I made my research on MS side and found this article

https://support.microsoft.com/en-us/help/2025598/https-connections-fail-and-ssl-bindings-are-deleted-for-a-website-in-i

So my question is, is this related to the Certificate or on the Operating system side?

Thanks
TECH-JEFF

1 Like

Hi Jeff,

Even though I don't feel that a cert could cause this problem, IIS 7 is rather old and might be particular about things most others no longer care about (or never did). Like the lack of SNI support.

That said, it would be good to know more about this situation; Like: Which ACME client was used and how the cert was imported.

READERS: Get involved. Be heard. Do your part with: If you read something you like, then like it :heart:

1 Like

Sorry for the wrong info. I'm using Windows Server 2019 and it is on iis version 10.

We used CertifyTheWeb

Thanks
TECH-JEFF

2 Likes

Hi @TECH-JEFF

checking https://support.microsoft.com/en-us/help/2025598/https-connections-fail-and-ssl-bindings-are-deleted-for-a-website-in-i : If you have that problem, the resolution should fix it.

So it's only a Windows relevant problem, if you have used the older IIS.6.0 earlier.

PS: But: Good to know, never heard that problem. Thanks ! :+1:

2 Likes

yes, I did read through that MS article and only to know that I did find the applicationHost.config but never saw the line that needs to be deleted.

Anyway thanks and I was just checking maybe some LetsEncrypt users did experienced this as well.

TECH-JEFF

3 Likes

I'm going to page someone for you, Jeff. :slightly_smiling_face:

@webprofusion

4 Likes

@TECH-JEFF thanks, please email support at certifytheweb.com for detailed help. We will need to know what script you are using for the certificate update. You should see in the app that the certificate requests are working ok but the step that may be failing is your custom script to apply the cert to the RDP gateway bindings. Our built in deployment task for RDP gateway is fairly basic and doesn't know about load balanced servers. Please also send through your log file for the certificate request and details of your setup.

3 Likes