Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

How to install more then one SSL on Windows 2008/IIS7?

We searched about this topic here and found lot of posts that cover different parts from this topic but we didn't find and answer for our solution.

Problem:

  • We have Windows 2008 Server with IIS7 and we would like to install more then one SSL on this server.
  • We have one IP address for this server but maybe we could get more of them, and we found that we can have only one SSL on one IP address

Questions:

  • If we are not wrong, we can have only one SSL on Windows 2008 / IIS7 if we have only one IP?
  • We found SSL certificates for multiple domains but this is not suitable for us because in green box in Address bar will be visible only one company (this is suitable for one company that has multiple websites). So the only option is to buy different SSL for each different company and what is the best way to set IIS7 to support this?
  • Can we host different websites (each with its own SSL) on same IIS7 webserver? What are our options?

Thanks Alex

like image 920
halex Avatar asked Dec 07 '10 17:12

halex


People also ask

Can you have 2 SSL certificates on one server?

A lot of people want to know whether you can install multiple SSL certificates on a single domain. The answer is yes.

Can we install multiple SSL certificates IIS?

From a single IP address and port, you can use multiple SSL certificates to secure various websites on a single domain (e.g., www.yourdomain.com, site2.yourdomain.com) or across multiple domains (e.g., www.domain1.com, www.domain2.com).

How do I install a multi-domain certificate?

Note: In order to have a multi-domain certificate validated and issued, it is necessary to complete the validation process for every SAN separately (receive the approval emails, upload the activation file to the root directory of every website, create the CNAME record for every domain name and/or subdomain included to ...

Do I need multiple SSL certificates?

In most cases, you'll only need one SSL certificate for your domain. But in certain cases, you might need two certificates for a single domain.


2 Answers

Unfortunately it is not currently possible to have multiple SSL certificates issued to multiple domains on a single IP address. There has to be a one to one relationship between SSL certificate, domain and IP. So you only option is to get additional IP address for the server.

You can use Host Headers to partially solve the problem, but inferring from your question I assume you have already encountered this and disregarding it as a viable option. Just incase anybody is googling and finds this question:

Host Headers allows you to bind a single certificate (multidomain or wildcard) to multiple domains on a single IP address, for example:

              sub1.mydomain.com
192.168.0.1 > sub2.mydomain.com > SSL: *.mydomain.com
              sub3.mydomain.com

More info on how to configure this can be found here:

http://www.sslshopper.com/article-ssl-host-headers-in-iis-7.html

like image 149
MrEyes Avatar answered Sep 22 '22 16:09

MrEyes


Another option is using different port than 443 with same ip.

Plus; have a look: Using Host Headers and SSL in IIS 7 (without the ugliness of appcmd)

like image 44
Nime Cloud Avatar answered Sep 24 '22 16:09

Nime Cloud