Re: SSL and Virtual Web Sites

From: Jonathan Maltz [MS-MVP] (jmaltz_at_mvps.org)
Date: 10/20/03

• Next message: Bernard: "Re: One web application can be accessed only from server localhost; need LAN access."
• Previous message: Dinis Cruz: "Re: Asp.Net.Vulnerability: Full Trust (current security problems and possible solutions)"
• In reply to: Jerry III: "Re: SSL and Virtual Web Sites"
• Next in thread: Bernard: "Re: SSL and Virtual Web Sites"
• Reply: Bernard: "Re: SSL and Virtual Web Sites"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Sun, 19 Oct 2003 23:28:01 -0400

Still not working for me. I used SelfSSL for both sites (using the /S and
/P parameters to get them to apply for the different sites) and only the
more recently created certificate works.

-- 
--Jonathan Maltz [Microsoft MVP - Windows Server]
http://www.imbored.biz - A Windows Server 2003 visual, step-by-step
tutorial site :-)
Only reply by newsgroup.  If I see an email I didn't ask for, it will be
deleted without reading.
"Jerry III" <jerryiii@hotmail.com> wrote in message
news:OuiuhMrlDHA.3504@TK2MSFTNGP11.phx.gbl...
> How about the fact that you didn't install a second certificate? If you
> don't have ANY certificates installed you won't be able to setup SSL at
all
> but it doesn't mean IIS doesn't support it. I do have multiple sites setup
> and I can change the settings freely as long as I have a distinct
> address/port combinations.
>
> Jerry
>
> "Jonathan Maltz [MS-MVP]" <jmaltz@mvps.org> wrote in message
> news:udQcGYmlDHA.2268@TK2MSFTNGP12.phx.gbl...
> > Then if that's true, I have a task for you.
> >
> > Create another website in addition to the Default
> >
> > Set up an SSL site on the default website using All Unassigned IP
> addresses
> > click OK, etc, make sure it works.
> >
> > Fire up the IIS Manager again and go to the properties of the second
site.
> > Click Advanced next to Web Site Identification, and look at the buttons
> for
> > SSL ports.
> >
> > Why are they grayed out if I can have another SSL site on a different
> port?
> >
> > -- 
> > --Jonathan Maltz [Microsoft MVP - Windows Server]
> > http://www.imbored.biz - A Windows Server 2003 visual, step-by-step
> > tutorial site :-)
> > Only reply by newsgroup.  If I see an email I didn't ask for, it will be
> > deleted without reading.
> >
> >
> > "Ken Schaefer" <kenREMOVE@THISadOpenStatic.com> wrote in message
> > news:uhgjDVhlDHA.688@TK2MSFTNGP10.phx.gbl...
> > > Not true. SSL requires a unique combiantion of IP address + port (you
> just
> > > can't use host-headers, since that part of the request is encrypted).
> > > Remember to put the port number into the URI when requesting if it's
> > > non-standard, eg:
> > >
> > > https://somesite.com:444
> > > (works fine - I have one site setup like this)
> > >
> > > Cheers
> > > Ken
> > >
> > > "Jonathan Maltz [MS-MVP]" <jmaltz@mvps.org> wrote in message
> > > news:OAt8fFUlDHA.2216@TK2MSFTNGP12.phx.gbl...
> > > : Nope, different IP as well, try it.
> > > :
> > > : -- 
> > > : --Jonathan Maltz [Microsoft MVP - Windows Server]
> > > : http://www.imbored.biz - A Windows Server 2003 visual, step-by-step
> > > : tutorial site :-)
> > > : Only reply by newsgroup.  If I see an email I didn't ask for, it
will
> be
> > > : deleted without reading.
> > > :
> > > :
> > > : "Jerry III" <jerryiii@hotmail.com> wrote in message
> > > : news:OkNpm0TlDHA.2012@TK2MSFTNGP12.phx.gbl...
> > > : > Or different port.
> > > : >
> > > : > Jerry
> > > : >
> > > : > "Jonathan Maltz [MS-MVP]" <jmaltz@mvps.org> wrote in message
> > > : > news:Oc8VVtOlDHA.2364@TK2MSFTNGP11.phx.gbl...
> > > : > > You need a different IP address for each SSL site
> > > : > >
> > > : > > -- 
> > > : > > --Jonathan Maltz [Microsoft MVP - Windows Server]
> > > : > > http://www.imbored.biz - A Windows Server 2003 visual,
> step-by-step
> > > : > > tutorial site :-)
> > > : > > Only reply by newsgroup.  If I see an email I didn't ask for, it
> > will
> > > be
> > > : > > deleted without reading.
> > > : > >
> > > : > >
> > > : > > "Ken Krause" <kkrause@promaxautonews.com> wrote in message
> > > : > > news:2aaa01c394e9$1cee5ca0$7d02280a@phx.gbl...
> > > : > > > I have a very general question. Can we use SSL on an IIS
> > > : > > > 5.0 web server that has dozens of virtual web sites, only
> > > : > > > some of which require SSL connections?
> > > : > > >
> > > : > > > Also, is there a primer somewhere on SSL and IIS 5.0 that
> > > : > > > ISN'T from  Microsoft Press?
> > > : > > >
> > > : > > > TIA,
> > > : > > > Ken
> > > : > >
> > > : > >
> > > : >
> > > : >
> > > :
> > > :
> > >
> > >
> >
> >
>
>

---

• Next message: Bernard: "Re: One web application can be accessed only from server localhost; need LAN access."
• Previous message: Dinis Cruz: "Re: Asp.Net.Vulnerability: Full Trust (current security problems and possible solutions)"
• In reply to: Jerry III: "Re: SSL and Virtual Web Sites"
• Next in thread: Bernard: "Re: SSL and Virtual Web Sites"
• Reply: Bernard: "Re: SSL and Virtual Web Sites"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.inetserver.iis.security  > 2003-10