Re: 2 SSL certs for 1 IIS site?

From: Andrew Davis [MS] (adavis_at_online.microsoft.com)
Date: 11/26/03 

Date: Wed, 26 Nov 2003 19:02:35 GMT

Keith is right on. Each Certificate will need it's own IP address.

Yes this will work for load balancing as well and you should be able use
the same certificate on each of the servers. For example the "owa"
certificate can be installed on Server A and Server B for each of the owa
sites, and the "webmail" certificate can be installed on Server A and
Server B for each of the webmail sites.

DNS resolution will forward request for owa to the NLB IP address which
will then forward to the Virtual IP of either the owa site on Server A or
Server B.

219277 Load Balancing HTTP with WLBS
http://support.microsoft.com/?id=219277

This posting is provided "AS IS" with no warranties, and confers no rights.

Thanks!
~Andrew Davis
Microsoft PSS Security

>From: "Keith W. McCammon" <km@km.com>
>Subject: Re: 2 SSL certs for 1 IIS site?
>Date: Tue, 25 Nov 2003 15:20:37 -0500
>No, but you can create another site pointing to the same web root, with the
>same config, and apply the certificate for the other common name to that
>site.

>"J Yue" <jasperyue@msn.com> wrote in message
>news:uUsrm74sDHA.2392@TK2MSFTNGP10.phx.gbl...
> We have an IIS site with a SSL cert installed.
> We are setting up a new extra URL and a new cert to access this site and
> needed SSL for it.
> Can we configure IIS to accept 2 certs for the same site? so you will be
> getting SSL no matter which URL you use to get to the site.
>
>Will this work if i take it to the next level: duplicate the same setup to
>another server and use windows network load balancing.
>That is:
>Both URL will deliver the request to either one of the servers and serve
the
>same content??
>1. http://owa
>2. http://webmail
>Server A: OWA1
>Site #1: header = owa, port 80/443
>Site #2: header = webmail, port 80/443
>Server B: OWA2
>Site #1: header = owa, port 80/443
>Site #2: header = webmail, port 80/443
>
> Thanks
> -jas

Relevant Pages

  • Re: rpc over https problems
    ... "The name on the security certificate is invalid or does not match the name ... when you open it with OWA)? ... and inserted it to the trusted root both on the server and the client ... Configure Outlook 2003 to use RPC over HTTP/S ...
    (microsoft.public.exchange.admin)
  • Re: SSL Noob needs some help
    ... We are Windows 2003 Active Directory with a central office and 2 small field ... Our Core Exchange server is here at corp office and each field ... Once the Cert Server is up, purchase and download the certificate to it. ... Enable OWA at each server to be SSL enabled. ...
    (microsoft.public.inetserver.iis.security)
  • owa 2003 switching to ssl from http
    ... We currently have a front end server that ... Obtain and pay for a certificate from a third party like Verisign. ... Install Microsoft Certificate Services as a Enterprise Root CA ... on the front end server that is used for OWA. ...
    (microsoft.public.exchange.admin)
  • RE: Issues with Mac IE 5 and OWA
    ... | I have all my PCs connected just fine to an exchange 2003 server on an SBS ... On all the PCs I can get OWA from my IE 6.0 browsers. ... install a valid security certificate for the server. ...
    (microsoft.public.windows.server.sbs)
  • RPC over HTTP, Microsoft solution
    ... Exchange Server 2003 RPC over HTTP Deployment Scenarios ... Place a check in the box next to 'Certificate Services' and click 'Yes' ...
    (microsoft.public.exchange.setup)
Quantcast