How to pass PCI compliance when MsDeploy requires WMSVC certificate?

244 views Asked by At

I have a build server running Bamboo for continuous integration, which deploys to another server running the live site.

I'm currently working on getting the latter server PCI compliant and am unable to resolve an issue with the presence of the self-signed (WMSVC) Web Management Service certificate, which is apparently required for MsDeploy to succeed.

I have very little experience with MsBuild/MsDeploy (another developer set this up long ago), but I'm hoping there is a simple way around this conflict.

1

There are 1 answers

0
Elliot Starks On BEST ANSWER

The issue was deploying over SSL, which requires at least a self-signed certificate. PCI compliance fails over the presence of a self-signed certificate so the answer was simply to delete that one and assign our licensed SSL certificate in IIS Management Service.