Microsoft KB Archive/289794

= HTMLA with SSL Incorrectly Warns of a Non-Secure Connection =

Article ID: 289794

Article Last Modified on 11/21/2006

-

APPLIES TO


 * Microsoft Internet Information Services 5.0

-



This article was previously published under Q289794



SYMPTOMS
When you use the HTML Administration Web Site through a Secure Sockets Layer (SSL) connection, the following error message occurs:

Warning! You are not using a secure connection for your Web-based administration. For more information, see Secure Sockets Layer in the Internet Information Services online documentation.



CAUSE
The Java script that parses the URL to find and identify an SSL connection is passed the incorrect parameters.



RESOLUTION
Edit the Default.asp page in the C:\WINNT\System32\Inetsrv\Iisadmin directory. Find the following line of code: if (curURL.substring(0,4) != &quot;HTTPS&quot;) and change it to: if (curURL.substring(0,5) != &quot;HTTPS&quot;)



MORE INFORMATION
The following statement will always return &quot;HTTP,&quot; and therefore always evaluates true in the IF statement and triggers the warning message: if (curURL.substring(0,4) != &quot;HTTPS&quot;) {   alert(&quot;<%= L_NOSSL_TEXT %>&quot;); }

From the SDK
substring( int beginIndex, int endIndex )

Returns a new string that is a substring of this string. The substring begins at the specified beginIndex and extends to the character at index endIndex - 1.

Additional query words: iis ssl administration warning 443 htmla

Keywords: kbprb kbpending KB289794

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.