Solved

Windows 2012 IIS 8 adding SSL

Posted on 2014-12-29
7
103 Views
Last Modified: 2015-01-15
Here the scenario:
Windows 2012 Server
IIS8

I need to run a web based application off the server. Internally works fine resolving to http://servername. I purchased an ssl cert and would like to set it up on the server. What i'd like to do is create a subdomain off of the hosting company aplus.net  (subdomain.myhost.com)and point that to the local server in house and use the SSL for that. I have an SSL registered and purchased.  I try to add the SSL cert to the server and it disappears from IIS. Do I need to create a domain cert first? Any help greatly appreciated. If I'm completely off on this please advise best steps. Thanks
0
Comment
Question by:jsgould
  • 5
  • 2
7 Comments
 
LVL 80

Expert Comment

by:David Johnson, CD, MVP
ID: 40523595
Guessing you own a domain i.e. example.com and have purchased an ssl certificate with the common name of mysite.example.com .. The way that I would do it is in the dns settings managed by your registrar add mysite.example.com and www.mysite.example.com with an A record that points to your public ip address. At your router forward ports 80 and 443 to the machine local ip address that hosts your website.  In IIS I would create a new site with the bindings for port 80 and port 443 (http/https) with a host header of both mysite.example.com and www.mysite.example.com in the https bindings add your certificate
0
 

Author Comment

by:jsgould
ID: 40524659
ok. i'll give it a try but may not be able til after the holiday. I'll keep you posted. Thank you
0
 

Author Comment

by:jsgould
ID: 40531807
Whenever I go to add the SSL cert to IIS 8 it shows as loaded and when I go back it's no longer there like it's not accepting it. Even when it's showing there and I do go to add the bindings for 443 the SSL cert does not show as an option to choose. Changes I've made domain.com instead of suddomain.domain.com. The SSL cert is for domain.com. I removed the host header info and the website works internally. Currently the registrar's DNS only has www.domain.com pointing to our internal server. I need to make sure ftp.domain.com still stays where it is. nothing else matters as this is a utility domain name. Do i also need to make a host file or DNS entry so domainname.com resolves to the local system? Should also not use all unassigned for ip address bindings and just choose the ip address? Any thoughts greatly appreciated. Thank you
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 80

Accepted Solution

by:
David Johnson, CD, MVP earned 500 total points
ID: 40532427
a SSL cert with the only Subject name of domain.com is not good for www.domain.com you need an alternate subject name of www.domain.com or a wildcard cert *.domain.com.  Did you create the cert request using IIS and then complete the certificate request with the file provided by the certificate authority?

You don't need a host header if it is the only website hosted on the system. As for IP ports the default is fine.
0
 

Author Comment

by:jsgould
ID: 40532448
no not with IIS i created it from the registrar where the domain is hosted. let me verify and double check all that. thanks
0
 

Author Comment

by:jsgould
ID: 40532493
it's set as www.domain.com with no wildcard
0
 

Author Comment

by:jsgould
ID: 40532652
i'm going to start over. fresh install on a different system. let me see what happens. i'll keep you posted. thanks
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Prologue It is often required to host multiple websites on a single instance of IIS, mostly in development environments instead of on production servers. I am sure it is not much a preferred solution on production servers but this is at least a pos…
When it comes to showing a 404 error page to your visitors, you do not want that generic page to show, and you especially do not want your hosting provider’s ad error page to show either. In this article, I will show you how to enable the custom 40…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question