Menu
I have a shared hosting plan. Now, my hosting company says it is necessary to have dedicated IP Addrss to install SSL certificate?
Is that true?
Can we install SSL certificate without dedicated IP address?
981
The short answer is no. The long answer is below. Although it's no longer a requirement across the board, some hosts still prefer that you have a dedicated IP address before they'll allow you to install an SSL certificate.
Nevertheless, a certificate does not contain any information about an IP address, and an SSL session is not bound to any specific IP address.
If you're just getting started and aren't expecting a lot of traffic, a shared IP address should work just fine. That being said, if your website is experiencing high traffic, facilitating a large volume of outgoing emails, and you need regular FTP access to your site, then you will require a dedicated IP address.
Assuming you will be hosting your services behind a domain name, not the IP address (e.g. http://myservice.com , not http://192.168.0.1 ) the IP address for an SSL does NOT need to be static, it just needs to be dedicated.
If your server supports SNI (Server Name Indication), then you don't need a dedicated IP. The browser support for SNI is pretty good these days.
If your server doesn't support SNI, then yes; you need one dedicated IP address per certificate. Since the SSL/TLS handshake happens before any HTTP headers (most notably the host header) are sent, there's no way that the web-server could know which certificate to send. You can host multiple domains/subdomains on one ip/port using a SAN or wildcard certificate certificate but you'd still need at least one dedicated IP.
For more details, see http://blogs.iis.net/thomad/archive/2008/01/25/ssl-certificates-on-sites-with-host-headers.aspx
137
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
