SSL connection / Reset connection with IISExpress

I summarize the steps that helped me solve this problem:

1. Verify that the SSL port range (used by IIS express) is between 44300-44398

During installation, IIS Express uses Http.sys to reserve ports 44300 through 44399 for using SSL. This allows regular users (without elevated privileges) of IISExpress to configure and use SSL. See here for more details.

2. Run the command below as an administrator at a command prompt. This will output the SSL certificate bindings to the computer. From this list, find the certificate used by IIS express for the corresponding port:

netsh http show sslcert> sslcert.txt

3. Locate the following items in the sslcert.txt file (in my case, IIS Express was running on port 44300)

IP: port : 0.0.0.0-00-004300

Certificate Hash : eb380ba6bd10fb4f597cXXXXXXXXXX

Application ID : {214124cd-d05b-4309-XXX-XXXXXXX}

4. Also, look in the IIS Express management console (RUN (Ctrl + R) → inetmgr.exe) and find out if the corresponding certificate exists in the server certificates.

(Click on ServerRoot → under IIS () → Open Server Certificates)

5. If your localhost uses a different certificate by default than the certificate specified in step 3, go to the next steps

netsh http delete sslcert ipport = 0.0.0.0: 44300

netsh http add sslcert ipport = 0.0.0.0: 44300 certhash = New_Certificate_Hash_without_space appid = {214124cd-d05b-4309-XXX-XXXXXXX}

New_Certificate_Hash will be your default certificate associated with your local host (which we found in step 4) or the one you want to add as a new certificate.

PS Thank you for your answer uosɐſ (which helped me solve this problem)

The problem I ran into is at some point in my case, allowing HSTS for the local host and not realizing that it will break my http: // localhost: someport in IIS Express.

HSTS tells the browser (Chrome in my case) to ALWAYS request a URL using HTTPS. Therefore, although I did not even enable SSL for my MVC 5 application, the browser will still try to access my site using HTTPS in the URL instead of HTTP.

Correction?

• Surf to chrome: // net-internals / # hsts
• In the delete section, enter "localhost" and delete the entry from Chrome.

None of the above options worked for me. I had to do the following:

• Remote IIS Express 8.0
• Removed all configurations in the My Documents folder for IIS Express
• Reinstall IIS Express 8.0
• Deleted a project on my local computer and uploaded a clean version for TFS
• Run the project - it went over SSL and I can debug

I got the steps of this thread.

Hope this helps.

In my case, I created a self-signed certificate and had it work, except that I received an error in the browser because the certificate was not reliable. So, I moved the certificate to the "Verified Root Certificate Authorities"> "Certificates" folder in the snapin certificates. This worked, and then I closed Visual Studio for a day.

The next day I started my project and I got the error mentioned in the original question. The problem is that the certificate that you configured IISExpress must exist in the Personal> Certificates folder or HTTPS will stop working. After successfully launching IIS Express, you can drag the certificate back to a safe place. It will work until you restart IIS Express.

Not wanting to fuss with dragging the certificate back and forth each time, I just put a copy of the certificate in both places, and now everything works fine.

I have the same problem in Visual Studio 2015. Since I use SSL binding in web.config

 <rewrite> <rules> <rule name="HTTP to HTTPS Redirect" stopProcessing="true"> <match url="(.*)" /> <conditions> <add input="{HTTPS}" pattern="off" /> </conditions> <action type="Redirect" url="https://{HTTP_HOST}/{R:1}" redirectType="Found" /> </rule> </rules> </rewrite> 

And I can fix this problem with Mr. Jerger's answer. Replacing

 <add input="{HTTPS}" pattern="off" /> 

from

<add input="{HTTP_HOST}" pattern="localhost" negate="true" />

in my web.config, so my code is

 <rewrite> <rules> <rule name="HTTP to HTTPS Redirect" stopProcessing="true"> <match url="(.*)" /> <conditions> <add input="{HTTP_HOST}" pattern="localhost" negate="true" /> </conditions> <action type="Redirect" url="https://{HTTP_HOST}/{R:1}" redirectType="Found" /> </rule> </rules> </rewrite> 

I had this problem, I configured my site for a global https request in FilterConfig.cs.

 public static void RegisterGlobalFilters(GlobalFilterCollection filters) { filters.Add(new HandleErrorAttribute()); filters.Add(new RequireHttpsAttribute()); } 

I forgot to change the project URL to https: from this tutorial http://azure.microsoft.com/en-us/documentation/articles/web-sites-dotnet-deploy-aspnet-mvc-app-membership-oauth-sql-database / under ENABLE SSL 4. This caused the errors that you were.

Another problem that happened to me twice:
In IIS Express applicationhost.config order of the bindings matters. One binding may take precedence over SSL binding, which makes it inoperative.

Example:

 <site name="MySite007" id="1"> <application path="/" applicationPool="Clr4IntegratedAppPool"> <virtualDirectory path="/" physicalPath="C:\Users\myuser\projects\mysolutionfolder\MyProject.Service" /> </application> <bindings> <binding protocol="http" bindingInformation=":8081:localhost" /> <binding protocol="http" bindingInformation=":8080:" /><!-- evil binding --> <binding protocol="https" bindingInformation="*:44327:localhost" /> </bindings> </site> 

You may have added a binding similar to the second in order to access your WebService from outside localhost . Since this binding is tapped on any address, it seems to undo the SSL binding, although a different port was used.

Remove the evil attachment or move it down.

This is anecdotal, like eavesdropping from a colleague, but presumably this is a problem with https chrome-forcing. I usually run in firefox, so I have not seen this problem before. Using firefox, etc. Worked for my employee.

My problem was caused by Fiddler. When Fiddler crashes, it sometimes gets confused with the proxy settings. Just starting Fiddler seemed to fix everything (maybe it was repairing itself somehow).

I would just rebuild my computer. This thread gave me hints, where I understood in the project settings> Web, the project was configured to use HTTP and HTTP port. Upgrading it to HTTPS and the correct HTTPS port, it worked again.

To go to other answers about configuring an SSL port between 44300 and 44399, I was unable to change the SSL Enabled property in Visual Studio and not set a specific SSL URL. Other answers, such as repairing IIS Express, did not help. The solution was to enter the .vs folder in parallel with the sln file, open the config subfolder, and then edit the applicationhost.config file. Then I added the https line manually and restarted VS.

 <binding protocol="http" bindingInformation="*:24941:localhost" /> <binding protocol="https" bindingInformation="*:44301:localhost" /> 

" " Verifying the installation of a Digicert certificate "often helps in such situations.

I was able to verify that the SSL certificate attempt was the one I was expecting when comparing the serial number.

For me, Jason Kleban's answer was a real problem, but it can be a very useful utility for checking your basic statements about which certificate is being downloaded.

In my case, I just forgot that I had a binding for (in my case) https: // localhost: 44300 in full IIS. You can't have both!

Removing IISExpress and vs directories and using the ssl port range from 44300 to 44399 (inclusive) from this article worked for me

If you need to use a port outside the range of 44300-44399, here is a workaround:

• Create a new site in IIS (not Express)
• Bind HTTPS to the desired port
• For SSL certificate, select IIS Express Development Certificate.
• Once the site is created, stop it, as it really should not be running

This registers the IIS Express Development certificate with this port and is the easiest way to get around the requirements of the 44300-44399 range.