Name on Security Certificate is invalid

From: James Townsend (jtownsend@rsasecurity.com)
Date: 03/27/03 

From: "James Townsend" <jtownsend@rsasecurity.com>
Date: Thu, 27 Mar 2003 13:16:39 -0800

The problem is related to SSL in general. You can not
issue an IIS Webserver two SSL certificates unless you
create a virtual site and run the second https site on a
different SSL protected port. This is cause by the
header of an SSL request to a webserver being encrypted.
So only the first certificate is seen and the webserver
will only response to that name.
>-----Original Message-----
>Are you installing a certificate from your own CA or
>someone else? - You might want to consider you're
>installing the wrong certificate for the particular
>website. If you're receiving your certificates as files
to
>be imported, make sure they're named differently to
avoid
>confusion.
>
>The other possibility is that you sent the info to the
CA
>incorrectly. Are you <sure> you described your Common
Name
>correctly? -- It should be the exact name you will use
to
>access the site (ie. www.yoursitename.com).
>
>Tony Su
>
>
>
>>-----Original Message-----
>>We have an IIS 5.0 server set up with two website that
>>each have SSL certificates installed. The first site
>>connects fine over port 80 and port 443. The second
site
>>connects fine over port 80. When we try 443 we get an
>>error "The name on the security certificate is invalid
or
>>does not match the name on the site". When we
click 'View
>>Certificate' we are presented with the first sites
>>certificate and when we proceed we are sent to the
first
>>site. We have checked the certificate on the server and
>re-
>>issued a new one. How can accessing a site over port
443
>>redirect you to a different web site with a different
IP?
>>.
>>
>.
>

Relevant Pages
Loading