Internet Information Services
Microsoft web server software.
1,590 questions
Replaced SSL cert that expires at end of week, but browsers have old one cached?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 50%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
sco gordo
301
Reputation points
I have a TLS cert that's due to expire on Saturday. I had a new cert created (CertNew.cer). On my client's intranet site's IIS server, (just a single front end, no lb, on-prem), I modified the site bindings to use the new cert. When I checked the site in the browser, the site came up fine, but when I checked the cert's General and Details I saw it was the old one (CertOld.cer).
I tried multiple iisresets and a reboot, nothing changed from the browser. I didn't run into this issue in other environments, though those certs had expired and the intranet sites were throwing errors before being replaced.
What's the preferred method? Anything I can do on the server side, or does this require a GPO to remove/replace a specific browser-cached cert? Something else?
Thanks!
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 88%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHM%3C/text%3E%3C/svg%3E)
HuryShen - MSFT 321 Reputation points2021-08-11T05:23:17.333+00:00 Have you tried with open an inprivate window of your browser ?
Sign in to comment