Server 2012 R2/IIS 8
I just started having issues accessing my web & server admins.
This used to work fine but browsers are now returning
My site works -fine- anywhere but from the server itself.
A call to my admin context
fails with the error SSL_ERROR, which i understand is likely due to plaintext being sent rather than the expected encrypted data.
a call to the generic context (no https)
works fine…but obviously can’t do anything useful with that.
I have HSTS enabled so https is enforced even for the admin side and request filtering (deny) for /lucee/admin/ enabled for the public side
Multiple things have changed recently
I recently made a couple of changes to my cipher suites on my server (dropped off a couple of insecure non-AEAD ciphers which are being penalized March 2018)
Installed Tomcat 8.5.28
Browsers (chrome & FF) both updated to latest builds
I’m not sure if any of those have caused the issue…
My guess is that this is due to an incorrect setup (connector port? host?) in server.xml
My only connector port setup
My only host setupwww.mysite.com
Again, public side of things works fine & admin access worked fine until just recently…so I’m not sure if I broke it (likely?), or if some update did.