LE64 creates acct, updates email - but that's it

Yeah!

The (second to last) problem was what I actually thought it was.
You can’t specify a domain for the https option in IIS, as you can for http.

So it was getting confused as there were two domains in the 1 cert – and IIS didn’t know which one to use.

I corrected this by:

cd \windows\system32\inetsrv

appcmd set site /site.name:"fundamentalenergy.com" /
+bindings.[protocol='https',bindingInformation='{your-ip}:443:www.fundamentalenergy.com']
appcmd set site /site.name:"fundamentalenergy.com" /
+bindings.[protocol='https',bindingInformation='{your-ip}:443.fundamentalenergy.com']

# results in:
SITE object "fundamentalobjects.com" changed

Which can also be done by editing the config directly.

notepad \windows\system32\inetsrv\config\applicationHost.config

… under <sites>

<binding protocol="http" bindingInformation="{your-ip}:80:www.fundamentalenergy.com" />
<binding protocol="http" bindingInformation="{your-ip}:80:fundamentalenergy.com" />
<binding protocol="https" bindingInformation="{your-ip}:443:www.fundamentalenergy.com" />
<binding protocol="https" bindingInformation="{your-ip}:443:fundamentalenergy.com" />
</bindings>

I also removed the, incorrect in my case, “*:443” entries.

Now you have loops:

D:>download https://fundamentalenergy.com/ -h
Content-Length: 153
Content-Type: text/html; charset=UTF-8
Date: Tue, 28 Aug 2018 16:22:34 GMT
Location: https://fundamentalenergy.com/
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET

Status: 302 Redirect

Self-redirect - oh, the next self-redirect ...

I’m a going to take it that you’ve seen redirect problems before?

I also do not have the http redirecting to https yet either.

I looked in this forum but did not chance across a post with redirect on IIS covered.

Can I ask where >download is from
or a recommendation on a redirect checker that will not add virus/trojans to my fun?

https://www.startpage.com/do/search?q=tool+to+check+website+redirects

ps
Is it better to keep this in one thread or is better to separate out new issues?

#ThankYou

The download.exe is a very old (created 2004) own freeware tool.

A simple tool to download one url. I use it with the -h option, so all headers are shown.

I think I got it
(but didn’t try download yet. Need to a/v that.)

https://fundamentalobjects.com

To fix the “http” redirect errors, I added this to web.config.
right after

</defaultDocument>
<rewrite>     
  <rules>
    <rule name="HTTPS force" enabled="true" stopProcessing="true">
      <match url="(.*)" />
      <conditions>
      <add input="{HTTPS}" pattern="^OFF$" />
      </conditions>
      <action type="Redirect" url="https://{HTTP_HOST}/{R:1}" redirectType="Permanent" />
    </rule>
  </rules>
</rewrite> 

This can be done programmatically instead, with urlrewrite.

Also, make sure in the SSL Settings (IIS -> Website -> IIS section -> SSL Settings) that [ ] Require SSL is not checked.

Yep, if I know it correct, this setting removes the http - binding, so http-01 - validation isn't possible.

Feel free to download -h test me (#fears .de downloads)

I think you guys were great and I am busy trying to find ways to help you.
(really)

My goal specifically for you is to reduce the questions coming to you, by documenting all of this in a different way.

Thank You!

Hello leader, JuergenAuer and others who helped.

As promised – here is a collection of #Windows-related LE cert-ing issues and solutions.

It is not meant to be an a-z install guide, but rather a answer set for common problems.

We’re going to use it as a way to show cross platform tools that will help to move people OFF of Windows servers, and over to GNU/Linux.

https://fundamentalobjects.com/articles/eff/windowsing-le.md

Any thoughts would be swell.

THANK YOU for your Help!

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.