Uploaded image for project: 'Modules'
  1. Modules
  2. MODULES-7173

IIS : Can not bring HTTPS site up on Port 443

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: iis, windows
    • Labels:
    • Template:
      MODULES Bug Template
    • Acceptance Criteria:
      Hide

      Add acceptance test for starting a ssl website.

      User should be able to start an ssl website.

      Show
      Add acceptance test for starting a ssl website. User should be able to start an ssl website.
    • Epic Link:
    • Team:
      Windows
    • Story Points:
      1
    • Sprint:
      Windows 2018-06-13
    • Method Found:
      Customer Feedback
    • CS Priority:
      Normal
    • CS Frequency:
      2 - 5-25% of Customers
    • CS Severity:
      3 - Serious
    • CS Business Value:
      3 - $$$$
    • CS Impact:
      Any regression in our support modules creates an impression that they are unreliable. This issue deserves to be fixed in general, but even more so since it worked in previous versions.
    • QA Risk Assessment:
      Needs Assessment

      Description

      Basic Info
      Module Version: 4.3.1
      Puppet Version: N/A
      OS Name/Version: Server 2016

      When attempting to bring an application up on port 443 using the HTTPS protocol, the module will first attempt to bring it up using http, then apply the https protocol, this works fine for most ports, however IIS fobids port 443 from using http, and results in the misleading failure below"

       

      // [0;36mDebug: STDOUT: Start-Website : Cannot create a file when that file already exists. (Exception from HRESULT: 0x800700B7)
       
      At line:1 char:1
       
      + Start-Website -Name "puppet_site" -ErrorVariable errvar;if($errvar){  ...
       
      + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
       
          + CategoryInfo          : InvalidOperation: (:) [Start-Website], COMException
       
          + FullyQualifiedErrorId : InvalidOperation,Microsoft.IIs.PowerShell.Provider.StartWebsiteCommand
       
       
       
      [0m
      [0;36mDebug: ERRMSG: Cannot create a file when that file already exists. (Exception from HRESULT: 0x800700B7). Perhaps there is another website with this port or configuration setting
      
      

      Using the following code:

      // iis_site { 'puppet_site':
            ensure             => 'started',
            applicationpool    => 'puppet_site_pool',
            authenticationinfo => {
              'basic'                       => false,
              'anonymous'                   => true,
              'windows'                     => false,
              'iisClientCertificateMapping' => false,
              'digest'                      => false,
              'clientCertificateMapping'    => false
            },
            enabledprotocols   => 'https',
            bindings           => [
            {
              'certificatestorename' => 'My',
              'protocol'             => 'https',
              'sslflags'             => 0,
              'certificatehash'      => $facts['iis_thumbprint'],
              'bindinginformation'   => '*:443:'
            }],
            physicalpath       => 'd:\\inetpub\\wwwroot',
            preloadenabled     => false,
       
          }
      

      also note the use of a fully qualified binding path was also attempted with no change to behaviour

      dowgrading to  4.2.1 solves this issue

      Desired Behavior:

      the application should be started with the stated protocol immediately

      Actual Behavior:

       

      the application is brought up with http and then moved to https

      bad (2).log

        Attachments

        1. good (3).log
          69 kB
        2. good (2).log
          69 kB
        3. enabledprotocols_move (1).log
          65 kB
        4. enabledprotocols_move.log
          65 kB
        5. enabledprotocol_site (1).pp
          0.8 kB
        6. enabledprotocol_site.pp
          0.8 kB
        7. bad (2).log
          65 kB

          Issue Links

            Activity

              People

              Assignee:
              william.hurt William Hurt
              Reporter:
              martin.ewings Marty Ewings
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Zendesk Support