failed
asked on
Install two certificates for the same website IIS 8
Hello
I would like to know if it's possible to install two certificates on the same IIS 8 web site i.e. to represent the same domain name?
The reason behind this is that we use IIS 8 as a reverse proxy to handle incoming AS2 traffic. The AS2 traffic will be signed with our public key, and the certificate for that is through godaddy and expires in a few weeks. When I renew the certificate, the old one will be revoked within 72 hours. This isn't long enough for us to distribute the new certificate to our AS2 customers and we can't afford to lose connectivity with them.
Godaddy have recommended that I purchase a new certificate under the same domain name, and that this can sit alongside the old one on their system. If I can install this alongside the old one, then this should solve my problem. Our AS2 customers then have a few weeks to install the new cert on their systems before the old one expires.
Any help is much appreciated.
Regards,
James
I would like to know if it's possible to install two certificates on the same IIS 8 web site i.e. to represent the same domain name?
The reason behind this is that we use IIS 8 as a reverse proxy to handle incoming AS2 traffic. The AS2 traffic will be signed with our public key, and the certificate for that is through godaddy and expires in a few weeks. When I renew the certificate, the old one will be revoked within 72 hours. This isn't long enough for us to distribute the new certificate to our AS2 customers and we can't afford to lose connectivity with them.
Godaddy have recommended that I purchase a new certificate under the same domain name, and that this can sit alongside the old one on their system. If I can install this alongside the old one, then this should solve my problem. Our AS2 customers then have a few weeks to install the new cert on their systems before the old one expires.
Any help is much appreciated.
Regards,
James
Yes, it can be done. See for more information - https://www.digicert.com/ssl-support/ssl-host-headers-iis-8.htm
ASKER
I don't think that will work because I want both certificates to bind to the same port. Any ideas?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I know you accepted an answer, but I thought I would add that you can put more than one domain name in one cert.
Check out this link at digi cert.
https://www.digicert.com/ev-multi-domain-ssl.htm
Check out this link at digi cert.
https://www.digicert.com/ev-multi-domain-ssl.htm
I believe the issues isn't multiple names, my interpretation of the issue at hand was that the name was staying the same. The issue was that the old certificate was expiring, and there was timing and coordination efforts necessary before the new certificate could be active on the site.
SAN and wildcard certificates solve a problem, which folks might also want to solve with binding multiple certificates to a port, but they don't solve this problem.
SAN and wildcard certificates solve a problem, which folks might also want to solve with binding multiple certificates to a port, but they don't solve this problem.