the same certificate, IIS 7 will give you an error when starting the site up stating that there is a port conflict. In order to assign a certificate to be used by multiple IIS sites on the same IP address, you will need to set up SSL Host Headers by following the instructions below.
What Type
of SSL Certificate Do You Need?
If, on the other hand, your IIS 7 sites all use different domain names (mail.mydomain1.com, mail.mydomain2.com, etc.), you will need to get a UnifiedCommunications Certificate (also called a SAN certificate).
Setting
up SSL Host Headers on IIS 7
Step-1: Obtain an SSL certificate and install it
into IIS 7.
Step-2: Once the certificate is installed into IIS, bind it to the first
site on the IP address.
Step-3: Open the
command prompt by clicking the start
menu and typing “cmd” and hitting enter.
Step-4: Navigate to
C:\Windows\System32\Inetsrv\ by
typing “cd C:\Windows\System32\Inetsrv\” on the command line.
Step-5:
In the Inetsrv folder, run the following command for
each of the other websites on the IP address that need to use the
certificate (copy both lines):
“appcmd set site /site.name:"<IISSiteName>" /+bindings.[protocol='https',bindingInformation='*:443:<hostHeaderValue>']”
Replace <IISSiteName> with the name of the IIS site and <hostHeaderValue> with the host header for that site (site1.mydomain.com)
“appcmd set site /site.name:"<IISSiteName>" /+bindings.[protocol='https',bindingInformation='*:443:<hostHeaderValue>']”
Replace <IISSiteName> with the name of the IIS site and <hostHeaderValue> with the host header for that site (site1.mydomain.com)
Step-6: Test each website in a browser. It should bring up the
correct page and show the lock icon without any errors. If it brings up the web
page of the first IIS site, then SSL Host Headers haven’t been set up
correctly.
0 comments:
Post a Comment