?
Solved

2 SSL certificates on 1 Server 1 IP address Host Headers

Posted on 2013-05-22
4
Medium Priority
?
546 Views
Last Modified: 2013-06-06
I purchased an nsProtect Secure (Xpress)  from network solutions. The problem is there's already an ssl certificate on the server. The server is Windows 2008. It has 1 IP address. There are multiple sites on the box sharing the common address using host headers. Is there a way to register the 2nd certificate on the box without invalidating the first one. It's my understanding that using the same IP address and default port 443 is a no no.
0
Comment
Question by:bensonwalker
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 10

Expert Comment

by:Gajendra Rathod
ID: 39188709
Add one addition IP address. Bind the certificate to this IP address and port 443.
0
 
LVL 1

Author Comment

by:bensonwalker
ID: 39188881
That's the  problem the ISP won't give me another IP address
0
 
LVL 10

Expert Comment

by:Gajendra Rathod
ID: 39189724
Using appcmd command, it is possible to add host header for HTTPS website in IIS binding.
0
 
LVL 33

Accepted Solution

by:
Dave Howe earned 2000 total points
ID: 39190135
Ok, the answer is no.

The technology does exist (its called Server Name Indication or SNI in TLS) but it isn't well supported yet, not at all in historic browsers, and in particular, IIS7.x doesn't support it (IIS8, found on server 2012, does)

A better solution is either a wildcard or SAN (subject alternative name) certificate. once you have added a single certificate that covers both sites, you can use the host header procedure Gajendra mentions to support multiple virtual hosts on a single SSL port.

http://techontip.wordpress.com/2011/06/06/how-to-configureimport-san-certificate-in-iis-7-x/
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Suggested Courses

800 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question