Hi, recently I bought from Godaddy UCC SSL cert. that was meant for Lync Server. Since there was a place for 2 more SANs (10 in total) I added ssl.domain.com.
Now on the Zywall 110 I've configured SSL VPN.
Unfortunately I have other websites behind zywall, so I NAT-ed 443 traffic to pass through the zywall and go to the IIS ARR. There it is proxied to appropriate server. On the ARR I configured, among the other farms, SSL webfarm, and rerouted traffic back to Zywall. So technically what I wanted to do is:
1. traffic comes to the Zywall, and because of the NAT rule it is routed to ARR
2. ARR check URL rewrite rule, and see that it is intended for SSL.domain.com and route traffic to Zywall.
3. Users are able to log in to SSL VPN.
But for SSL VPN I need certificate.
Since I have UCC cert. only one cert is installed on ARR. On the other hand I need to install that certificate on Zywall.
What I tried:
I tried to install intermediate cert. to trusted certificates, and the certificate I exported from ARR to My Certificates. Import process was successful. Then for WWW I wanted to use certificate I imported and voila, I got unresponsive Zywall! Even though I have on purpose unchecked route HTTP to HTTPS (to be able to access it if the certificate is bad) I was not able to access over HTTP also!!!! So I needed to reset conf to factory settings and read the old one from the backup.
Can someone please help me to install certificate?
↧