> Hi there,

> i have a big problem and i did not find a solution so here is my last
> hope.

> I have a windows server 2003 with IIS6.
> There i have a virtual Host with host headder kb.koou.at
> I want to secure this whol virtual host and so i created a certificate
> and installed it on the website.
> If i use http:// everything works fine, i can brows the website.
> Now i tested it using https:// now there comes the warning that the
> certificat is not from a trusted...but that is ok so far, i then click
> on continuing browsing this website an then the windows Box comes
> where i can put in Username and passord. (I do not understand why this
> is comming up) an even if i use the administrators Username and
> Password, i get a Error Page with Error 403 Forbidden.
> No there is no 403.x, its only the 403 Error.
> The website is online, who wants to test it please try with and without
> using https.

> Please can anyone help me fixing this problem.

> Kind Regards
> Helga

"Daniel Crichton" wrote:

> Helga wrote on Tue, 19 Feb 2008 09:00:01 -0800:
>
> > Hi there,
>
> > i have a big problem and i did not find a solution so here is my last
> > hope.
>
> > I have a windows server 2003 with IIS6.
> > There i have a virtual Host with host headder kb.koou.at
> > I want to secure this whol virtual host and so i created a certificate
> > and installed it on the website.
> > If i use http:// everything works fine, i can brows the website.
> > Now i tested it using https:// now there comes the warning that the
> > certificat is not from a trusted...but that is ok so far, i then click
> > on continuing browsing this website an then the windows Box comes
> > where i can put in Username and passord. (I do not understand why this
> > is comming up) an even if i use the administrators Username and
> > Password, i get a Error Page with Error 403 Forbidden.
> > No there is no 403.x, its only the 403 Error.
> > The website is online, who wants to test it please try with and without
> > using https.
>
> > Please can anyone help me fixing this problem.
>
> > Kind Regards
> > Helga
>
> You say you have a virtual host - is there a site running on the IP address
> (default site, no host header) that requires logging in? You can't use SSL
> with a "virtual host" as the SSL handshaking is done before the Host: header
> is passed by the browser, so the initial connection handling is done using
> the credentials of the "default" site. I've tried your host name via https
> and I get no connection at all.
>
> --
> Dan
>
>
>