Multiple Identities for one site. -- iis security

iis security : Multiple Identities for one site.

Kevin Antel
10/19/2004 1:46:14 PM

We have an application running on one website. We want to co-brand it for
multiple names. Is it possible to put multiple SSL identities on one site?

ie:
http://www.site1.com
http://www.site2.com
http://www.site3.com

https://secure.site1.com
https://secure.site2.com
https://secure.site3.com

Is it safe to assume that I can do this, but I would need a unique IP for
each site? One Web, multiple IP's multiple SSL's?

Thanks.

jeff.nospam NO[at]SPAM zina.com
10/19/2004 7:29:51 PM

On Tue, 19 Oct 2004 13:46:14 -0400, "Kevin Antel" <kevina@cqlcorp.com>
[quoted text, click to view]

SSL needs a unique IP or port for each site. Ports are problematic
since they have to be specified on the URL, so separate IP's is the
norm.

Miha Pihler
10/19/2004 8:02:05 PM

Hi Kevin,

You could setup 1 site for all unsecured content and assign it multiple
names using host header name.

For secure sites, I believe the best solution would be to setup one Web Site
on IIS for each of your secure site. On home folder tab you would point each
of these secure sites to same folder on hard drive (this way each secure web
site you create points to same content).

For each of your secure sites you will need 1 free IP address. Another (less
attractive method) is to use 1 IP but run each secure site on different TCP
port. This is not very practical since someone accessing secure site 3 would
have to enter https://secure.site3.com:446/ or some other TCP port. Some
people would actually be prevented from visiting your site since not
everyone has free access to TCP port 446 on the internet (there is usually
no need to).

I hope I didn't complicate it too much :-)

Mike

[quoted text, click to view]

Steve S.
10/29/2004 2:26:05 PM

[quoted text, click to view]

We use a single IP and multiple ports internally, but externally we use
different IPs all using port 443. Ah, the wonders of the NAT. :-)

On another note it is a HEADACHE to keep all the IIS settings across the
multiple sites identical, especially in a farm. With 2 load balanced web
servers and 3 virtual web sites for our 3 SSL certs, I have to make a change
SIX TIMES to keep them all in sync.

If anyone has a better way to do this please enlighten me.

--Steve S.

Got something to say? Click here to post a reply to this thread.

Don't see what you're looking for? Try a search.

View other messages about iis security

View Other Months
June 2003
July 2003
August 2003
September 2003
October 2003
November 2003
December 2003
January 2004
February 2004
March 2004
April 2004
May 2004
June 2004
July 2004
August 2004
September 2004
October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005
May 2005
June 2005
July 2005
August 2005
September 2005
October 2005
November 2005
December 2005
January 2006
February 2006
March 2006
April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
January 2007
February 2007
March 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
December 2007
January 2008
February 2008
March 2008
April 2008
May 2008
June 2008

home · blog · groups

Questions? Comments? Contact the dn