Howdy!
I've done a lot of searching and none of the solutions as to why https won't work on my site solve the problem.
I'm running Windows Server 2008 R2 with two websites, both of which work fine over http:http://hulkercafe.com & http://vgturnstile.com
I am running WordPress on vgturnstile and bought a plugin that shows customized social network feeds. In the case of Twitter it has to communicate over https so I followed the steps to buy a SSL certificate. The Server Certificates section shows the certificate properly and I added the binding to https for the vgturnstile site. The 443 port is open in the firewall. The site displays properly as you'd see if you click the link over http. If I try to do the same overhttps://vgturnstile.com I get ERR_CONNECTION_REFUSED displayed in Chrome (IE gives generic connection problem button).
If I run one of the SSL testers on the web it doesn't show my site as having a certificate.
If I run SSL Diagnostics and hit generate report I get this:
System Time : Tuesday, May 26, 2015 1:11:39 PM Eastern Standard Time
Processor Architecture : x64
OS : Microsoft Windows NT 6.1.7601 Service Pack 1
Microsoft Internet Information Services 7.5
SERVER SSL PROTOCOLS
PCT 1.0 : Enabled
SSL 2.0 : Enabled
SSL 3.0 : Enabled
TLS 1.0 : Enabled
SChannel EventLogging : 1 (hex)
-----
[W3SVC/1]
ServerComment : Default Web Site
ServerAutoStart : False
ServerState : Stopped
BINDING : http *:80:
BINDING : net.tcp 808:*
BINDING : net.pipe *
BINDING : net.msmq localhost
BINDING : msmq.formatname localhost
[W3SVC/2]
ServerComment : GamerResource
ServerAutoStart : False
ServerState : Stopped
BINDING : http *:80:
[W3SVC/3]
ServerComment : DefianceTraders
ServerAutoStart : True
ServerState : Started
BINDING : http *:80:hulkercafe.com
[W3SVC/4]
ServerComment : VGTurnstile
ServerAutoStart : True
ServerState : Started
BINDING : http *:80:vgturnstile.com
BINDING : https *:443:
SSLCertHash : E06EDBA4F2027335AD8C3DCEE5E71ED0C3CE2BA8
SSL Flags :
Testing EndPoint : 127.0.0.1:443 - Success
#CertName :
#Version : 3
#You have a private key that corresponds to this certificate.
#Signature Algorithm : sha256RSA
#Key Exchange Algorithm : RSA-PKCS1-KeyEx Key Size : 2048
#Subject : CN=vgturnstile.com, OU=PositiveSSL, OU=Domain Control Validated
#Issuer : CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
#Validity : From Monday, May 25, 2015 8:00:00 PM To Friday, May 25, 2018 7:59:59 PM
#Serial Number : 5EC748F7F5D851FFB8D09FAED5818D43
DS Mapper Usage : Disabled
Archived : False
#Authority Key Identifier : KeyID=90 af 6a 3a 94 5a 0b d8 90 ea 12 56 73 df 43 b4 3a 28 da e7
#Subject Key Identifier : 03 0c 10 12 9f 1a 95 a7 73 34 c8 87 3b ed 4d 32 57 02 2c 34
#Key Usage : Digital Signature, Key Encipherment (a0)
#Basic Constraints : Subject Type=End Entity, Path Length Constraint=None
#Enhanced Key Usage : Server Authentication (1.3.6.1.5.5.7.3.1), Client Authentication (1.3.6.1.5.5.7.3.2)
#Certificate Policies : [1]Certificate Policy:Policy Identifier=1.3.6.1.4.1.6449.1.2.2.7, [1,1]Policy Qualifier Info:Policy Qualifier Id=CPS, Qualifier:https://secure.comodo.com/CPS, [2]Certificate Policy:Policy Identifier=2.23.140.1.2.1
#CRL Distribution Points : [1]CRL Distribution Point: Distribution Point Name:Full Name:URL=http://crl.comodoca.com/COMODORSADomainValidationSecureServerCA.crl
#Authority Information Access : [1]Authority Info Access: Access Method=Certification Authority Issuer (1.3.6.1.5.5.7.48.2), Alternative Name=URL=http://crt.comodoca.com/COMODORSADomainValidationSecureServerCA.crt, [2]Authority Info Access: Access Method=On-line
Certificate Status Protocol (1.3.6.1.5.5.7.48.1), Alternative Name=URL=http://ocsp.comodoca.com
#Subject Alternative Name : DNS Name=vgturnstile.com, DNS Name=www.vgturnstile.com
Certificate verified.
-----
If I right-click on the 443 binding and simulate a request I get this:
Server certificate name : OU=Domain Control Validated, OU=PositiveSSL, CN=vgturnstile.com
Server certificate subject : CN=vgturnstile.com, OU=PositiveSSL, OU=Domain Control Validated
Server certificate issuer : CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Server certificate validity : From 5/25/2015 8:00:00 PM To 5/25/2018 7:59:59 PM
RemoteCertificateNameMismatch
HTTP REQUEST
GET https://localhost/ HTTP v1.1
Host : localhost
Connection : Keep-Alive
HTTP RESPONSE
HTTP 1.1 200 OK
X-Pingback : https://vgturnstile.com/xmlrpc.php
Content-Type : text/html; charset=UTF-8
Server : Microsoft-IIS/7.5
X-Powered-By : PHP/5.4.24,ASP.NET
Date : Tue, 26 May 2015 17:12:36 GMT
Content-Length : 38423
followed by the standard page HTML
Since this is testing localhost rather than the domain it's not very effective.
It's been a frustrating experience doing something that on the surface seems so simple. Any help would be greatly appreciated.
Chris
