PRB: Cannot Access the Administration Site on Cluster Members After Cluster Creation (821114)
The information in this article applies to:
- Microsoft Application Center 2000 SP2
- Microsoft Windows Server 2003, Web Edition
SYMPTOMSAfter you create a cluster, you cannot access the Administration site on cluster members by using a Secure Sockets Layer (SSL) connection. CAUSEBy default, the
Administration Web site is installed on the Web edition of Windows Server 2003, and the site requires SSL (HTTPS) to connect. To
support this scenario, a local certificate that has no root Certification Authority is
generated and bound to the Administration Web site. By default, Application
Center 2000 replicates all certificates that are bound to Web sites and the
corresponding metabase properties when a cluster is added. Because of this, the copy of the Administration Web site on the newly added member points to
the controller's certificate in the member's local certificate store. Because the
name in the controller's certificate is the controller computer name, SSL
connections to this site are unsuccessful.RESOLUTIONTo resolve this problem, do either of the following: - Before you create a cluster, remove the certificate binding for the Administration
site, and then bind a "cluster" certificate (that is, a certificate that has the same subject as the
host name that clients use) to the site.
- Disable the SSL requirement for accessing
this site and require clients to use the TCP port that the ServerBindings
property specifies. By default, this is 8099.
MORE INFORMATIONBecause you cannot upgrade from any version of Microsoft Windows 2000 to Windows
Server 2003 Web Edition, this only applies to new installations.
| Modification Type: | Minor | Last Reviewed: | 7/15/2003 |
|---|
| Keywords: | kbprb KB821114 kbAudDeveloper |
|---|
|