Re: Trying to create a pass through for SSL

From: David Wang [Msft] (someone@online.microsoft.com)
Date: 04/02/03 

From: "David Wang [Msft]" <someone@online.microsoft.com>
Date: Wed, 2 Apr 2003 01:24:45 -0800

Can you clarify a couple of things::
1. You have a website at http://mysub-domain.xyz.com
2. You have a secure website at https://secure.xyz.com/~mysub-domain
3. https://secure.xyz.com/~mysub-domain points to the exact same content as
http://mysub-domain.xyz.com ??

That sounds like no problems on IIS. All it entails is one SSL certificate
shared on a secure site, and all sub-domains that have secure services are
simply vdirs under the secure site. You then check "Accept only SSL" on the
secure site and you are done.

I create two websites, one is secure and one isn't, and I create a vdir on
the secure one that is named like the insecure one and point its physical
directory to the insecure website's content, and when I want secure services
I simply make the client go to the secure website using my vdir name.

Or am I completely missing something?

FYI: SSL has nothing to do with PHP -- SSL is a connection-level concept
while PHP is an application-layer concept -- SSL happens way before PHP even
gets involved. 

--
//David
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"Ellen_WI" <Ellen.Kozel@sschc.org> wrote in message
news:004201c2f8d1$963a4650$a001280a@phx.gbl...
Hi Bernard..
What I want to do is be able to share an SSL certificate
over several sites. I know this can be done as I have it
being done on a personal web server by an outside vendor.
Basically it works this way. (I'm not sure technically how
it works and thats why I'm trying to engineer one.)
The main webserver the sites sit on has a subdomain that a
certificate is issued to. Lets call it secure.xyz.com. I
have a website on the same server whether it be a sub-
domain or domain of itself. Now when the website was
setup, a secure connection to the shared SSL was also
established the form it takes is
https://secure.xyz.com/~my sub or domain name, less
the .com. Example: The original website http:mysub-
domain.xyz.com and the secure website through the shared
SSL https://secure.xyz.com/~mysub-domain. If I want secure
services I call the https connection and then add to it
the virtual path example: https://secure.xyz.com/~mysub-
domain/purchases/index.asp.
I looked at the way the connection appears and what I did
was created a secure.xyz.com and attached a certificate
opening the SSL channel 443. Next I created a virtual
directory inside the secure.xyz.com and called it ~mysub-
domain. I did this to insure no duplicate names. If I
remove the SSL connection to the two of them
(secure.xyz.com and virtual directory ~mysubdomain) and
call http://secure.xyz.com/~mysub-domain the mysub-domain
comes up in the browser no problem. However, when I attach
the SSL socket to the website I get page not found. The
mysubdomain doesn't own a certificate only the
secure.xyz.com. I've been searching the net and know this
can be done in PHP but am not familiar with that add-in.
Microsoft does attach the secure.xyz.com cetificate to the
virtual directory but I can't view the folder through a
web browser. I'm sure MS must allow it or they wouldn't
give SSL security tabs to virtual directories or would
they?
Can you help me.
Ellen
>-----Original Message-----
>what do you mean by 'pass through' here ?
>authentication or redirect ?
>
>how is this virtual directory 'connects' to the internal
>site ? do the internal site has a cert as well ?
>
>would be helpful to have more detail on overall setup
info...
>
>
>--
>Regards,
>Bernard Cheah
>http://support.microsoft.com/
>
>
>"Ellen_WI" <Ellen.Kozel@sschc.org> wrote in message
>news:01c201c2f89a$f68be310$a401280a@phx.gbl...
>> I created a website called secure.xyz.com and then a
>> virtual directory inside that website called ~mis. The
>> virtual directory connects to an internal website. In
http
>> mode the pass through to the site works fine, but when I
>> attach the SSL certificate to the website and try to
>> access the virtual directory I get a page not found
error
>> message. I have tested the root and SSL works fine up to
>> there, but it seems it's not seeing the virtual
directory.
>> I checked the virtual directory and the certificate is
>> attached to it.
>
>
>.
>

Relevant Pages

  • Removing Requirment for an SSL connection
    ... I have SBS 2000 running with IIS and Exchange and went through this ... We set the default website up to require an SSL connection because we didn't ... Office Scan) so of course this now required a secure connection to connect ...
    (microsoft.public.inetserver.iis)
  • Removing Requirement for SSL
    ... I have SBS 2000 running with IIS and Exchange and went through this ... We set the default website up to require an SSL connection because we didn't ... Office Scan) so of course this now required a secure connection to connect ...
    (microsoft.public.inetserver.iis.security)
  • Re: Trying to create a pass through for SSL
    ... What I want to do is be able to share an SSL certificate ... Now when the website was ... (secure.xyz.com and virtual directory ~mysubdomain) ...
    (microsoft.public.inetserver.iis.security)
  • Re: Trying to create a pass through for SSL
    ... accept SSL only check box and is it on the secure website ... or the virtual directory? ... You have a secure website at ...
    (microsoft.public.inetserver.iis.security)
  • Re: Trying to create a pass through for SSL
    ... > The main webserver the sites sit on has a subdomain that a> certificate is issued to. ... I> have a website on the same server whether it be a sub-> domain or domain of itself. ... Now when the website was> setup, a secure connection to the shared SSL was also> established the form it takes is ... If I> remove the SSL connection to the two of them> (secure.xyz.com and virtual directory ~mysubdomain) and> call http://secure.xyz.com/~mysub-domain the mysub-domain> comes up in the browser no problem. ...
    (microsoft.public.inetserver.iis.security)