I've run the Best Practise Analyzer on a migrated SBS 2011 Standard server and have been trying to fix the warnings. It has been updated to version 1.4. Most warnings are fixed but there is one I think is incorrect:
Category: Configuration Source: 369 Issue: There is no binding for SSL on the Default Web Site. Impact: If SSL is not bound to the Default Web Site, users may not be able to access some web sites might not be available to users. Resolution: To bind SSL to the Default Web Site, click Start, point to Administrative Tools, and then click Internet Information Services (IIS) Manager. In IIS Manager, in the Connections pane, expand your server, expand Sites, right-click Default Web Site, and then click Edit Binding. In Site Bindings, click Add, and then select the following options: Type = https, IP Address = All Unassigned, and Port = 443. Click OK to save your changes. Note: If an HTTPS binding for port 443 exists for a specific IP address, change the IP Address attribute for that binding to "All Unassigned." The exception to this is for IP address 127.0.0.1. Do not change the binding for 127.0.0.1.
I've checked IIS and there is a SSL binding for the default web site like stated, using * and a third-party certificate. Port 443 on the router is forwarded to this server and I can connect to it from the internet as well as from the server itself. The certificate is correctly setup and gives no warnings. So it should not give a warning
