Multiple Ssl Certificates On One Ip Iis7

Configuring ssl host headers in iis 7.

Multiple ssl certificates on one ip iis7. I have a single iis 7 server with a single ip address. Active 4 years 3 months ago. Classic chicken and egg problem. Until sni is fully supported you can only have one certificate per ip.

Two or more iis sites with no ssl binding ill touch on changing a binding at the end. Through the iis manager interface iis only allows you to bind one site to each ip address to port 443 using an ssl certificate. In order to assign a certificate to be used by multiple iis sites on the same ip address and port we need to use a special mechanism. Port combination using an ssl certificate.

An ip you wish to use on multiple iis sites. Before we go there lets understand why it is not possible for iis to allow the binding of multiple sites on same ip. There has to be a one to one relationship between ssl certificate domain and ip. I assume the cert is already installed on your server.

For iis 8 see configuring ssl host headers in iis 8 and iis 85. For iis 6 see configuring ssl host headers in iis 6. So you only option is to get additional ip address for the server. Site 1 has an ssl cert for www and site 2 has a wildcard ssl cert for various subdomains.

If you use host headers with a regular ssl certificate the same certificate must be used for every site. Host headers are used to host multiple secure websites on one ip address. Unfortunately it is not currently possible to have multiple ssl certificates issued to multiple domains on a single ip address.