Solved

2 SSL certificates on 1 Server 1 IP address Host Headers

Posted on 2013-05-22
4
539 Views
Last Modified: 2013-06-06
I purchased an nsProtect Secure (Xpress)  from network solutions. The problem is there's already an ssl certificate on the server. The server is Windows 2008. It has 1 IP address. There are multiple sites on the box sharing the common address using host headers. Is there a way to register the 2nd certificate on the box without invalidating the first one. It's my understanding that using the same IP address and default port 443 is a no no.
0
Comment
Question by:bensonwalker
  • 2
4 Comments
 
LVL 10

Expert Comment

by:Gajendra Rathod
ID: 39188709
Add one addition IP address. Bind the certificate to this IP address and port 443.
0
 
LVL 1

Author Comment

by:bensonwalker
ID: 39188881
That's the  problem the ISP won't give me another IP address
0
 
LVL 10

Expert Comment

by:Gajendra Rathod
ID: 39189724
Using appcmd command, it is possible to add host header for HTTPS website in IIS binding.
0
 
LVL 33

Accepted Solution

by:
Dave Howe earned 500 total points
ID: 39190135
Ok, the answer is no.

The technology does exist (its called Server Name Indication or SNI in TLS) but it isn't well supported yet, not at all in historic browsers, and in particular, IIS7.x doesn't support it (IIS8, found on server 2012, does)

A better solution is either a wildcard or SAN (subject alternative name) certificate. once you have added a single certificate that covers both sites, you can use the host header procedure Gajendra mentions to support multiple virtual hosts on a single SSL port.

http://techontip.wordpress.com/2011/06/06/how-to-configureimport-san-certificate-in-iis-7-x/
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microservice architecture adoption brings many advantages, but can add intricacy. Selecting the right orchestration tool is most important for business specific needs.
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question