« Previous Next »

• 07-22-2009, 8:34 AM

  In reply to

  drewberrylicious Joined on 07-22-2009, 12:14 PM Posts 4

  Re: IIS 7 & SSL Reply Contact chrisad: Hey- Bernard is correct that in IIS7 that it will support wildcard certs for multiple SSL support.  However, like IIS 6, the IIS Manager for IIS7 doesn't support configuring IIS7 using SSL & Host Headers.  Thus, the same approach as was used in IIS 6 would be used with slight modifications to the actual utility.  For example, instead of using adsutil.vbs to set the configuration property SecureBindings you would use AppCmd or Microsoft.Web.Administration for the <sites> collection's bindings.  If you can't figure this out, let us know and I am happy to test and give back the sample... Thanks,   On further reading, it appears that an internal CA might be a better option over the Self Signed Certificate... Once again, any help you can offer would be very much appreciated.

• 07-23-2009, 3:52 AM

  In reply to

  qbernard Joined on 03-25-2003, 10:12 PM Malaysia Posts 3,252	Re: IIS 7 & SSL Reply Contact What kind of help ? are you looking for CA or Self Signed Cert or SSL host header on this thread? Cheers, Bernard Cheah

• 07-23-2009, 6:35 AM

  In reply to

  drewberrylicious Joined on 07-22-2009, 12:14 PM Posts 4

  Re: IIS 7 & SSL Reply Contact chrisad: Hey- Bernard is correct that in IIS7 that it will support wildcard certs for multiple SSL support.  However, like IIS 6, the IIS Manager for IIS7 doesn't support configuring IIS7 using SSL & Host Headers.  Thus, the same approach as was used in IIS 6 would be used with slight modifications to the actual utility.  For example, instead of using adsutil.vbs to set the configuration property SecureBindings you would use AppCmd or Microsoft.Web.Administration for the <sites> collection's bindings.  If you can't figure this out, let us know and I am happy to test and give back the sample... Thanks,   Hi Chrisad, Would definitely like some help with how to use AppCmd or Microsoft.Web.Administration for binding wildcard SSL certificate to my multiple sharepoint sites with host headers running on port 80 From the way I understand it, I need to: IIS 7 > Server Certificates > Create Certificate Request using *.domain.com as the common name Submit the Certificate Request to a CA (which in this case is my Domain Controller) for signing Import the signed certificate via IIS 7 > Server Certificates > Complete Certificate Request Assuming these steps are correct (if they're not, please let me know), what do I need to do next to bind the wildcard cert to each website?

• 07-25-2009, 12:16 PM

  In reply to

  tanmayathopate Joined on 02-24-2008, 2:19 AM Pune Posts 27	Re: IIS 7 & SSL Reply Contact  Well explained!!! [:)] -------------------- Tanmaya Your Internet Identity Partner

• 10-01-2009, 11:57 AM

  In reply to

  drivingforce Joined on 10-01-2009, 3:54 PM Posts 1

  Re: IIS 7 & SSL Reply Contact I am running IIS7 on a Windows 2008 Web Edition x64 Server. I have one public IP. I am trying to figure out an SSL solution that allows me to support multiple secure domain names on the same server that are not simply wildcards subdomains. ie, not: a.domain.com b.domain.com but www.firstdomain.com www.seconddomain.com I have had trouble finding information on how to do this. Is it possible? If so would you be willing to explain how or provide links to information that I can't seem to find? Thanks all!

• 10-02-2009, 12:14 PM

  In reply to

  ashayderov Joined on 08-13-2007, 9:54 PM Posts 8

  Re: IIS 7 & SSL Reply Contact  As far as I understand (please correct me if I'm wrong) when Web server negotiates SSL session (and that's when SSL Certificate must be presented to the client) Host Header information is not yet available. It is encoded yet and can be decoded only after SSL session will be established. Only destination IP address is available. So one IP address - one SSL certificate, wildcard or not.

• 10-05-2009, 5:25 AM

  In reply to

  qbernard Joined on 03-25-2003, 10:12 PM Malaysia Posts 3,252	Re: IIS 7 & SSL Reply Contact If you have one IP address + not trying to do wildcard, then you need to bind the cert at different ports (443,8888,9999/etc). then clients will access via https://mytestdomain:8888/abc.htm   Cheers, Bernard Cheah

• 12-01-2009, 2:22 PM

  In reply to

  WiredDriver Joined on 12-01-2009, 7:16 PM Posts 2

  Re: IIS 7 & SSL Reply Contact  Hey guys, I'm having a problem and would really appreciate your help.  I need to manually edit the "SecureBindings" string for a website, but I cannot figure out how to do this.  I'm trying to setup SSL for our sites and having the .mydomain on then end is not acceptable. In IIS 6 I would right click the website>Select All Tasks> Save COnfiguration to a File... Then I could open the XML and update SecureBindings from: SecureBindings=":10126:" to: SecureBindings=":10126:[SERVERNAME]" Can someone please tell me how to do this, then how to import this file as the new website in IIS 7.0. I tried using APPCMD and I'm not sure if I have it right or not, I'm new to this as well.  Here's the line I used: appcmd list config "[SITENAME]/" /config:* /xml >Output.xml Your help is greatly appreciated.     I was able to find where this information was located.  It's in the applicationhost.config file. at C:\Windows\System32\inetsrv\config

• 12-04-2009, 1:31 AM

  In reply to

  qbernard Joined on 03-25-2003, 10:12 PM Malaysia Posts 3,252	Re: IIS 7 & SSL Reply Contact To migrate IIS 6 to 7, try the msdeploy or web deployment kit. The save config file in IIS 6 is not really paste'able to the IIS 7 configuration file. Cheers, Bernard Cheah