Lately I had the issue that SolarWinds Orion was detecting an expiring certificate on one of our servers. I have replaced every certificate on the server and double checked (of thought!) that the old certificate was deleted. But it was still complaining about an expiring date on a certificate I couldn’t find. I checked the event logs and found the event 15021, which told me something was still wrong.
I found out that a certificate was on a binding with “netsh show http certssl” in a command prompt.
It was resolved by doing the following.
- Open a CMD.exe.
- Execute “netsh http show sslcert“, and got the following back.
123456789101112131415SSL Certificate bindings:-------------------------IP:port : 0.0.0.0:443Certificate Hash : <old hash>Application ID : {f955c070-e044-456c-ac00-e9e4275b3f04}Certificate Store Name : (null)Verify Client Certificate Revocation : EnabledVerify Revocation Using Cached Client Certificate Only : DisabledUsage Check : EnabledRevocation Freshness Time : 0URL Retrieval Timeout : 0Ctl Identifier : (null)Ctl Store Name : (null)DS Mapper Usage : DisabledNegotiate Client Certificate : Disabled
- Note down the old configuraiton and delete the binding with “netsh http delete sslcert ipport=0.0.0.0:443“.
- Add it again with “netsh http add sslcert ipport=0.0.0.0:443 certhash=<new hash> appid=”{f955c070-e044-456c-ac00-e9e4275b3f04}”“.
Now the error is gone from the event log and Orion!
That’s all from now.