SSL Certs on IIS

topic posted Mon, December 17, 2007 - 4:50 PM by  		Share/Save/Bookmark
Advertisement
I was wondering, is it possible to get an SSL cert for a shared ip in IIS or do I have to assign a dedicated IP?

Here are my scenerios:

1) IIS ip is 192.168.1.10 site name: test.xyz.com
I add a new site with a header of zebra.xyz.com with it's own subdirectory on the server, etc.
Now I want to get an SSL cert for zebra.xyz.com, will this work?

OR:
2) IIS ip is 192.168.1.10 & 192.168.1.11
192.168.1.10 is assigned to test.xyz.com
192.168.1.11 is assigned to zebra.xyz.com (with it's own subdir, etc.)
Can I get an SSL cert for zebra.xyz.com in this configuration?

Note: Of course the server is behind a NAT, I am not sure if the IP follows the cert or not, if I change the IP will I have to change the cert?
At a later time, IF I wanted to get a cert for test.xyz.com would I be able to get it one as well? (and have it co-exist with zebra on the same server?)

Thanks in advanced,
-Tony
posted by:
join to post
Advertisement
Advertisement
  • Frank
    Frank
    offline 31

    Re: SSL Certs on IIS

    Mon, December 17, 2007 - 5:56 PM
    The SSL cert is not tied to the IP of the server, it is tied to the header information of the sites.So:

    test.xyz.com needs a cert
    zebra.xyz.com needs a cert

    If they are hosted on one server (which it sounds like they are), or you're using a reverse proxy server you can get a Wildcard certificate which is good for any variation of <servername>.xyz.com
    join to post

Recent topics in "System Administrators"

Topic Author Replies Last Post
Using PXE server to create and restore ghost images Unsubscribed 5 October 2, 2009
Phoenix OWASP July/August Meetings obnosis 0 July 2, 2009
Donations Sought: Time & Materials diana 0 April 1, 2008
Cheap NAS box 6 March 14, 2008