mattolan
asked on
multiple seperate ssl web sites under one IP
In IIS 7 how can I configure multiple seperate web sites using ssl that are all on the same IP address.
ex
site1 -- 192.168.110.1 -- www.foo.com:80
site2 -- 192.168.110.1 -- www.home.com:80
site3 -- 192.168.110.1 -- www.gone.com:80
Normaly they would be set up on seperate IP address, but how can I configure them all on one address and on port 80. ?
ex
site1 -- 192.168.110.1 -- www.foo.com:80
site2 -- 192.168.110.1 -- www.home.com:80
site3 -- 192.168.110.1 -- www.gone.com:80
Normaly they would be set up on seperate IP address, but how can I configure them all on one address and on port 80. ?
You cant.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I have a UCC cert with all the domain names in it. Can I somehow tell IIS to decrypt the traffic before it tries to route it to a specific site?
the requirement is to have a single cert for each ip address (and port combination) on the server.
so if you have one cert that can handle all hostnames (like a wildcard certificate) then you can do it:
http://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/596b9108-b1a7-494d-885d-f8941b07554c.mspx
Note that a wildcard cert requires hostnames with all the same domain.
Cheers!
so if you have one cert that can handle all hostnames (like a wildcard certificate) then you can do it:
http://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/596b9108-b1a7-494d-885d-f8941b07554c.mspx
Note that a wildcard cert requires hostnames with all the same domain.
Cheers!
ASKER
ok this is helpfull, but I am running server 2008 with IIS 7, appcmd had replaced adsutil. do you know of an example of how to configure this for IIS 7?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Hello,
>> Your example wont work unless you have site1.mydomain.com,site2.m ydomain.co m,site3.my domain.com
I concur (of course! ;-)
I repeat: "a wildcard cert requires hostnames with all the same domain"
>> do you know of an example of how to configure this for IIS 7?
http://technet.microsoft.com/en-us/library/cc731692.aspx
Cheers!
>> Your example wont work unless you have site1.mydomain.com,site2.m
I concur (of course! ;-)
I repeat: "a wildcard cert requires hostnames with all the same domain"
>> do you know of an example of how to configure this for IIS 7?
http://technet.microsoft.com/en-us/library/cc731692.aspx
Cheers!
I know its a little late but I have encountered the same issue.
We would like to run multiple unique domains on one IP IIS 7 with a UCC cert.
The appcmd example is below but from my testing its not working correctly.
SITE1 www.site1.com
appcmd set site /site.name:"site1" /+bindings.[protocol='http s',binding Informatio n='10.10.1 00.1:443:www.site1.com']
SITE2 www.site2.com
appcmd set site /site.name:"site2" /+bindings.[protocol='http s',binding Informatio n='10.10.1 00.1:443:www.site2.com']
you can replace the IP address in the syntax above to a * if you want all unassigned. I just decided to map the IP to the site. The problem still remains and we have been unsuccessful to do so without some sort of SSL appliance in front to decrypt the traffic first.
If im way off, please let me know.
D
We would like to run multiple unique domains on one IP IIS 7 with a UCC cert.
The appcmd example is below but from my testing its not working correctly.
SITE1 www.site1.com
appcmd set site /site.name:"site1" /+bindings.[protocol='http
SITE2 www.site2.com
appcmd set site /site.name:"site2" /+bindings.[protocol='http
you can replace the IP address in the syntax above to a * if you want all unassigned. I just decided to map the IP to the site. The problem still remains and we have been unsuccessful to do so without some sort of SSL appliance in front to decrypt the traffic first.
If im way off, please let me know.
D