Re: Multiple website in single IP, host header and SSL problem
- From: "Steve Foster [SBS MVP]" <steve.foster@xxxxxxxxxxxxx>
- Date: Sun, 05 Nov 2006 19:36:35 -0800
prof_martin wrote:
Hi,
I have websites hosted in one server, single IP address using host header in
IIS 6.0 (windows 2003 standard ed.)
For illustration, in IIS I created 4 websites for respective domain name
indentified on host header:
www.domain1.com
domain1.com
www.domain2.com
domain2.com
I installed SSL on website www.domain1.com
If I type https://www.domain1.com works fine.
If I type https://domain1.com should be OK, although promp security for
different site name
Problem is, if I type https://www.domain2.com or https://domain2.com, it
prompt security message and display www.domain1.com content.
Should be something wrong in my configuration.
You can only use host headers and SSL together on a single IP if you have a wildcard SSL certificate and all the host headers belong to the same common domain (that's on the SSL certificate).
For any other SSL scenario, you need one IP per SSL site.
The reason for the difficulty is that the host header in the request is *inside* the encrypted request, which must therefore be decrypted before the header can be read. But the request must be handed off to a website before it can be decrypted. ie it's a chicken and egg situation (you need the header to decide which site, but you need the site to get at the header).
--
Steve Foster [SBS MVP]
---------------------------------------
MVPs do not work for Microsoft. Please reply only to the newsgroups.
.
- Prev by Date: Re: Multiple website in single IP, host header and SSL problem
- Next by Date: [IIS 5] Homemade cert and SSL
- Previous by thread: Re: Multiple website in single IP, host header and SSL problem
- Next by thread: [IIS 5] Homemade cert and SSL
- Index(es):
Relevant Pages
|
