Solved

2 SSL certificates on 1 Server 1 IP address Host Headers

Posted on 2013-05-22
4
545 Views
Last Modified: 2013-06-06
I purchased an nsProtect Secure (Xpress)  from network solutions. The problem is there's already an ssl certificate on the server. The server is Windows 2008. It has 1 IP address. There are multiple sites on the box sharing the common address using host headers. Is there a way to register the 2nd certificate on the box without invalidating the first one. It's my understanding that using the same IP address and default port 443 is a no no.
0
Comment
Question by:bensonwalker
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 10

Expert Comment

by:Gajendra Rathod
ID: 39188709
Add one addition IP address. Bind the certificate to this IP address and port 443.
0
 
LVL 1

Author Comment

by:bensonwalker
ID: 39188881
That's the  problem the ISP won't give me another IP address
0
 
LVL 10

Expert Comment

by:Gajendra Rathod
ID: 39189724
Using appcmd command, it is possible to add host header for HTTPS website in IIS binding.
0
 
LVL 33

Accepted Solution

by:
Dave Howe earned 500 total points
ID: 39190135
Ok, the answer is no.

The technology does exist (its called Server Name Indication or SNI in TLS) but it isn't well supported yet, not at all in historic browsers, and in particular, IIS7.x doesn't support it (IIS8, found on server 2012, does)

A better solution is either a wildcard or SAN (subject alternative name) certificate. once you have added a single certificate that covers both sites, you can use the host header procedure Gajendra mentions to support multiple virtual hosts on a single SSL port.

http://techontip.wordpress.com/2011/06/06/how-to-configureimport-san-certificate-in-iis-7-x/
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
Microservice architecture adoption brings many advantages, but can add intricacy. Selecting the right orchestration tool is most important for business specific needs.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question