Is there a way to configure multiple SSL sites on the same server without a wildcard certificate?

Question

Is there a way to configure multiple SSL sites on the same server without a wildcard certificate?

I installed several ssl sites on iis using Servier links in accordance with this article: http://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/8d9f2a8f-cd23-448c-b2c7-f4e87b9e2d2c.mspx?mfr = true

I have two different ssl certificates for two installed sites, but when I browse the site, I get the same certificate. Is there any way to configure this without buying a substitution certificate?

+4

ssl iis

dr. foot fist headknocker Oct 23 '08 at 20:12

source share

4 answers

Without using different IP addresses or ports, no. Due to how HTTPS connections work, an encrypted connection occurs before things like host headers can be sent, so there is no way for the server to know which one to connect to.

+4

Steven robbins Oct 23 '08 at 20:17

source share

Configure sites to work on different IP addresses or ports. The reason for this is because SSL is wrapped in AROUND http, and host headers are sent inside HTTP. For instance. the server does not know on which site the request is located at the SSL level.

+1

svinto Oct 23 '08 at 20:15

source share

Each site needs a separate IP address.

0

Ely Oct 23 '08 at 20:15

source share

Cesarb · Accepted Answer · 2008-10-24T00:11:56+0000

If the browser and web server support the Name Name extension, the web server can use it to select the correct certificate. Otherwise, you will have to use two separate IP addresses or a wildcard certificate (as mentioned in other answers, HTTP headers, including the host header, which tells the web server which site is being requested, are encapsulated in an SSL / TLS connection).

Is there a way to configure multiple SSL sites on the same server without a wildcard certificate?

More articles: