I installed 2 sites of networks separated by an ISA server, public and private networks. In the private, I created a web site running on IIS with SSL (on a microsoft window 2k computer) and using internal CA service (on another window 2k computer).This makes every web clients have to use HTTPS to access to that web site.For internal clients, there is no any problem for web site accessing even web browser showing warning message of certificate or not, the web site, finally, can be accessed.
The problem is when external client trying to access web site through web publishing on ISA. I always meet problem like this bottom message.
The Page can not be displayed . . . 500 Internal Server Error - The certificate chain was issued by an untrusted authority (-2146893019) Internet Security and Acceleration Server.
Anyway, for normal web site (HTTP), there is no problem. The external clients are able to access via web publishing rule.
To configure network in this style, I follow up to the microsoft document: Microsoft Knowledge Base Article - 324167 How To: Export, Install, and Configure Certificates to Internet Security and Acceleration Server
and also checked at a suggestion of Thomas Shinder on web page: Solving the Dreaded "500 Internal Server Error - The target principal name is incorrect" Error.
Please, If anybody know what I am facing, give me your suggestion, I'm just a newmer for ISA system and took so all week to find out the solution. Thank in advance.
Make sure the ISA Server firewall has the CA certificate of the CA that issued the Web site certificate in its Trusted Root Certification Authorities machine certificate store. Use the procedures I outlined in the Publishing OWA 2003 series.