IIS 6 and Wildcard SSL

Soldato
Joined
5 Mar 2003
Posts
10,771
Location
Nottingham
Hoping someone can help! We've got three websites setup in IIS.
* Website one:
----- webone.mywebsite.co.uk

* Website two:
----- webtwo.mywebsite.co.uk

* Website three:
----- skinone.mywebsite.co.uk
----- skintwo.mywebsite.co.uk
----- skinthree.mywebsite.co.uk

As per the above, 2 of the websites have one host header each and the third has three. Now this is all working fine. I'm moving over to SSL and website one and two were setup find using the following command:
cscript.exe adsutil.vbs set /w3svc/<site identifier>/SecureBindings ":443:<host header>"

Now on website three, only the last one I bind works, so if I do it for skinone and skin two, https://skinone.mywebsite.co.uk no longer works, but https://skintwo.mywebsite.co.uk works fine.

Is there any way to do this rather than creating one website for each subdomain? There are going to be potentially 200+ skins, so would like to avoid that!

Cheers.
 
So you are using the 3 skins as host headers on the 3rd site? And want the SSL to work across all of those? With the potential to add many more host headers to that one site? I don't see any issue when using a wildcard SSL as everything is on the same main domain. As long as your cert is for *.mywebsite.co.uk it should work across everything.

I never used script installation, just the IIS manager to install my certs.
 
To your points: yes, yes and yes! :)
Our cert is defo wildcard... and it works with multiple websites with different subdomains, but we defo can't get it to work on one website with multiple subdomains (host headers) :(
 
Have you tried using the server certificate wizard in the IIS manager. Go to your 3rd site profile properties and the directory security tab. That's how I installed mine for our subdomain.. although our setup isnt really applicable so I'm afraid I'm limited in what I can suggest.

Is your SSL provider not giving you much assistance?
 
The servers our hosted here... I'm a developer, the server guys are well versed in Windows NT / Active Directory etc, but we don't really have an IIS guru!

The only reason why I'm worried about doing the certificate through the wizard is because the other sites are working (clients are using them so I can't have them go down) and the microsoft website says to do it the binding away for wildcard SSL (although admittedly it's not working for more than one host header per site...) :(
 
First thing I would do is talk to your SSL provider. They will be the best bet in answering your question.

I doubt the wizard would interfere with your other sites, but I can't say for sure.
 
Back
Top Bottom