Hello Giuseppe,
Friday, April 13, 2001, 12:16:58 AM, Giuseppe Aielli wrote:
> Hi to all,
> A couple of words on this. We also had absolutely no problems in installing
> the certificate on win 2k's IIS 5 except for:
> 1. iis' help says you have to use different IPs to install multiple certs on
> the same machine (I don't believe this but I'll have to buy a second cert to
> know!); this is very bad for those who use host header names to have
> multiple virtual servers (or identities) on the same phisical machine;
It is a requirement of the SSL protocol that it cannot share the same
IP address and port combination.
I've generally not found this to be a problem, however. Very very few
sites have users actually type in https://theirsite.com/ Visitors
instead come into the SSL site via a link on the standard site.
So what I have done is assigned a unique port number to each SSL site.
For example it may look like:
https://secure.customerdomain.com:9001/
The cert is still in the name secure.customerdomain.com, and at least
in apache it is very easy to do the ssl vritual hosts this way.
You instruct the user in how to construct their links to their SSL
site, and make sure that any pages or scripts they use use the correct
URL or preferably just use relative links instead of full ones.
--
Best regards,
William mailto:[EMAIL PROTECTED]
