I just migrated our department webserver to Windows 2008 R2 running IIS 7. I
configured CoSign 3.1.0 and everything was working fine. I later realized that
the certificate I was using for my domain (pts.umich.edu) was issued by UM Web
CA. So people were getting invalid certificate errors when accessing our
secure site (https://pts.umich.edu). I added the web cert, signed by DigiCert.
So now I have two certificates listed for pts.umich.edu. This is when Cosign
stops working. I'm getting "The service is unavailable."
I'm guessing that cosign doesn't like that there are two certs for the same
domain. So I remove the DigiCert and revert back to the one from UM Web CA. I
restart IIS and the app pools. I restart the server. I removed all certs and
re imported it-making sure the permissions were set in the Cert Manager. I
still get the same problem with getting "The service is unavailable."
Here is a copy of the output from DebugView if this could help someone identify
my problem.
[1688] [CosignModule] GetHttpModule Thread id = 1776l
[1688] [CosignModule] CosignModule created.
[1688] [CosignModule] OnAuthenticateRequest() Thread id = 1776l
[1688] [CosignModule] New GetConfig()uration logics!
[1688] [CosignModule] Metapath = MACHINE/WEBROOT/APPHOST/DEFAULT WEB SITE
[1688] [CosignModule] unprotected url
[1688] [CosignModule] execreqhandler: qs =
cosign-pts=qGUgqEkwjaa2+poANHHsVFr+dc4y-XHZoiMtTLd1-je5XdPwpQRXQgwmnOo2FS2w9BBp+4IZJLswzbrDVlkNoJd6s9GkdK6VLatkuagd3elEIarnfAFz310qttiO&https://pts.umich.edu/alternative_transportation/greenride
[1688] [CosignModule]
{*********************GetValidationConfig*********************}
[1688] [CosignModule] Metapath = MACHINE/WEBROOT/APPHOST/DEFAULT WEB SITE
[1688] [CosignModule] NumFactors = 0
[1688] [CosignModule] {*********************GetValidationConfig
Done****************}
[1688] [CosignModule] Regex is https?://.*pts\.umich\.edu(/.*)?
[1688] [CosignModule] CHECK'ing cookie
[1688] [CosignModule] CHECKing cookie, waiting for mutex.
[1688] [CosignModule] Obtained the mutex.
[1688] [CosignModule] connections.size() = 6
[1688] [CosignModule] CheckCookie iter 0
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] Error reading data from socket 0
[1688] [CosignModule] CheckCookie iter 1
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] Error reading data from socket 1
[1688] [CosignModule] CheckCookie iter 2
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] Error reading data from socket 2
[1688] [CosignModule] CheckCookie iter 3
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] Error reading data from socket 3
[1688] [CosignModule] CheckCookie iter 4
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] Error reading data from socket 4
[1688] [CosignModule] CheckCookie iter 5
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] Error reading data from socket 5
[1688] [CosignModule] Repopulating and trying again...
[1688] [CosignModule] aiCur->ai_addr: 141.211.144.205
[1688] [CosignModule] << 220 2 Collaborative Web Single Sign-On
[1688] [CosignModule] aiCur->ai_addr: 141.211.13.252
[1688] [CosignModule] << 220 2 Collaborative Web Single Sign-On
[1688] [CosignModule] aiCur->ai_addr: 141.211.13.253
[1688] [CosignModule] << 220 2 Collaborative Web Single Sign-On
[1688] [CosignModule] aiCur->ai_addr: 141.211.144.42
[1688] [CosignModule] << 220 2 Collaborative Web Single Sign-On
[1688] [CosignModule] aiCur->ai_addr: 141.211.144.46
[1688] [CosignModule] << 220 2 Collaborative Web Single Sign-On
[1688] [CosignModule] aiCur->ai_addr: 141.211.144.176
[1688] [CosignModule] << 220 2 Collaborative Web Single Sign-On
[1688] [CosignModule] connections.size() = 6
[1688] [CosignModule] CheckCookie iter 0
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] << 220 Ready to start TLS
[1688] [CosignModule] AcquireCredentialsHandle failed with 0x8009030d
[1688] [CosignModule] Error starting TLS on socket 0
[1688] [CosignModule] CheckCookie iter 1
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] << 220 Ready to start TLS
[1688] [CosignModule] AcquireCredentialsHandle failed with 0x8009030d
[1688] [CosignModule] Error starting TLS on socket 1
[1688] [CosignModule] CheckCookie iter 2
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] << 220 Ready to start TLS
[1688] [CosignModule] AcquireCredentialsHandle failed with 0x8009030d
[1688] [CosignModule] Error starting TLS on socket 2
[1688] [CosignModule] CheckCookie iter 3
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] << 220 Ready to start TLS
[1688] [CosignModule] AcquireCredentialsHandle failed with 0x8009030d
[1688] [CosignModule] Error starting TLS on socket 3
[1688] [CosignModule] CheckCookie iter 4
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] << 220 Ready to start TLS
[1688] [CosignModule] AcquireCredentialsHandle failed with 0x8009030d
[1688] [CosignModule] Error starting TLS on socket 4
[1688] [CosignModule] CheckCookie iter 5
[1688] [CosignModule] >> STARTTLS 2
[1688] [CosignModule] << 220 Ready to start TLS
[1688] [CosignModule] AcquireCredentialsHandle failed with 0x8009030d
[1688] [CosignModule] Error starting TLS on socket 5
[1688] [CosignModule] Released the mutex.
[1688] [CosignModule] Service cookie invalid: all weblogin servers returned
RETRY.
[1688] [CosignModule] CosignModule destructed.
[1688] [CosignModule] GetHttpModule Thread id = 1776l
[1688] [CosignModule] CosignModule created.
[1688] [CosignModule] OnAuthenticateRequest() Thread id = 1776l
[1688] [CosignModule] New GetConfig()uration logics!
[1688] [CosignModule] Metapath = MACHINE/WEBROOT/APPHOST/DEFAULT WEB SITE
[1688] [CosignModule] unprotected url
[1688] [CosignModule] CosignModule destructed.
[1688] [CosignModule] GetHttpModule Thread id = 1776l
[1688] [CosignModule] CosignModule created.
[1688] [CosignModule] OnAuthenticateRequest() Thread id = 1776l
[1688] [CosignModule] New GetConfig()uration logics!
[1688] [CosignModule] Metapath = MACHINE/WEBROOT/APPHOST/DEFAULT WEB SITE
[1688] [CosignModule] unprotected url
[1688] [CosignModule] CosignModule destructed.
[1688] [CosignModule] GetHttpModule Thread id = 1776l
[1688] [CosignModule] CosignModule created.
[1688] [CosignModule] OnAuthenticateRequest() Thread id = 1776l
[1688] [CosignModule] New GetConfig()uration logics!
[1688] [CosignModule] Metapath = MACHINE/WEBROOT/APPHOST/DEFAULT WEB SITE
[1688] [CosignModule] unprotected url
[1688] [CosignModule] CosignModule destructed.
------------------------------------------------------------------------------
RSA(R) Conference 2012
Mar 27 - Feb 2
Save $400 by Jan. 27
Register now!
http://p.sf.net/sfu/rsa-sfdev2dev2
_______________________________________________
Cosign-discuss mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/cosign-discuss
