Welcome to HostingForumz.com!
FAQFAQ      ProfileProfile    Private MessagesPrivate Messages   Log inLog in

IIS5 and SSL

  
   Web Hosting Problem Solving Community! (Home) -> IIS RSS
Next:  Apache Weblogic plugin configuration.  
Author Message
Berry at JSO

External


Since: May 26, 2005
Posts: 3



(Msg. 1) Posted: Tue Apr 25, 2006 7:17 am
Post subject: IIS5 and SSL
Archived from groups: microsoft>public>inetserver>iis (more info?)
I’ve installed an SSL cert for mysite.domain.com, and I currently have the
site set up to use a specific IP and a host-header, but SSL doesn’t work at
https://mysite.domain.com.
Is SSL with a host-header possible? I’ve consulted the IIS 5 documentation,
and the info there is conflicting.
If it’s not, I suppose I could define my site as ip.ip.ip.ip with no
host-header, and setup DNS to resolve mysite.domain.com to that IP. Would
that work?

TIA,

 >> Stay informed about: IIS5 and SSL 
Back to top
Login to vote
Daniel Crichton

External


Since: Apr 21, 2006
Posts: 158



(Msg. 2) Posted: Tue Apr 25, 2006 12:55 pm
Post subject: Re: IIS5 and SSL [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Berry wrote on Tue, 25 Apr 2006 07:17:03 -0700:

> I’ve installed an SSL cert for mysite.domain.com, and I currently have the
> site set up to use a specific IP and a host-header, but SSL doesn’t work
> at https://mysite.domain.com.
> Is SSL with a host-header possible? I’ve consulted the IIS 5
> documentation, and the info there is conflicting.
> If it’s not, I suppose I could define my site as ip.ip.ip.ip with no
> host-header, and setup DNS to resolve mysite.domain.com to that IP. Would
> that work?
>
> TIA,

SSL is negotiated before the browser sends the Host header. You need to have
the site set up with the certificate using the common name (host name) for
the site, and ensure that DNS maps the hostname you've used to the IP
address for your site.

For instance, if you have a site mysite.domain.com on IP 10.11.12.13 with an
SSL certificate, but you have mysite.domain.com resolving to 14.15.16.17,
then SSL won't work as the initial connection from your browser will be to
port 443 on 14.15.16.17, yet IIS is listening to port 443 on 10.11.12.13.

Does that make sense?

Dan

 >> Stay informed about: IIS5 and SSL 
Back to top
Login to vote
WenJun Zhang[msft]

External


Since: Dec 16, 2005
Posts: 229



(Msg. 3) Posted: Tue Apr 25, 2006 11:55 pm
Post subject: Re: IIS5 and SSL [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Hi,

Host header doesn't work with SSL because the whole HTTP package is
encrypted and therefore IIS cannot parse the host header info on HTTP
header before decryption.

You have to assign a dedicated IP address to the SSL site and register a
DNS name for it. Otherwise you need to configure a non-default SSL port for
the site.

Please update here if you meet any further problem.

Best regards,

WenJun Zhang
Microsoft Online Partner Support

This posting is provided "AS IS" with no warranties, and confers no rights.
 >> Stay informed about: IIS5 and SSL 
Back to top
Login to vote
Display posts from previous:   
   Web Hosting Problem Solving Community! (Home) -> IIS All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



[ Contact us | Terms of Service/Privacy Policy ]