Hi Paul, If you want multiple secure addresses, you will need an IIS site for each URL (unless you have a wildcard certificate, which I will not go into here), and an IP address for each domain name you want to use SSL over - SSL does not work with host header, so it will need to listen on a single IP address.
What you will want to do first is add another IP address to the server, since you are publishing with ISA it will be easy enough to add another local IP to the server. Then you will want to extend your web application, you can do this in Central Admin by Application Management > Create or Extend Web Application > Extend an Existing Web Application. Once you have done this it will create a new IIS site with the address of your extranet that you can use to access your site collection on. Edit the bindings on the new IIS site, and ensure it is only using the new local IP address. You can them bind your SSL certificate to this site, again make sure the IIS site is listening on this IP address. The default settings will mean it will listen on any incoming IP, which will immediately stop the site in IIS. If this happens, just right click on the site to start it up again. After this you then check out your AAMs and make sure the extranet address has been added. Default Zone would be https://intranet.sites.com Internet Zone would be https://extranet.sites.com You should then be able to browse to https://extranet.sites.com and view your site. Happy to list the steps required in more detail if needed. Regards, Mark Mark Rhodes | Emantra | Technology Specialist | [email protected]<mailto:[email protected]>| 1300 728 953 | +61733337702 From: [email protected] [mailto:[email protected]] On Behalf Of Paul Noone Sent: Monday, 1 June 2009 2:26 PM To: [email protected] Subject: Enable SSL on existing web app - ISA publishing Hi all, We're trying to enable SSL on an existing web app and attach a local certificate. We then want to publish the same site through ISA using another certificate and use AAM to map the URLs. i.e. Internal app in default zone - https://intranet.sites.com External app in Internet zone - https://extranet.sites.com I can't find any reliable docs on how to do this with an existing web application. The trick seems you just add 'https' to the existing Internal URL for that site and attach the cert through IIS. Is this the case?? If I go with the new web app approach, how do I then associate the existing site collection? Can you attach the same content DB to two applications? Or do I extend the existing web app? When I try to do this I'm unable to associate the existing site to it. In the words of Vinnie Barberino: "I'm so confused!" :) Any help appreciated. Regards, Paul Online Developer, ICT CEO Sydney ________________________________ Support procedure: https://www.codify.com/lists/support List address: [email protected] Subscribe: [email protected] Unsubscribe: [email protected] List FAQ: http://www.codify.com/lists/ozmoss Other lists you might want to join: http://www.codify.com/lists -------------------------------------------------------------------------------- Support procedure: http://www.codify.com/lists/support List address: [email protected] Subscribe: [email protected] Unsubscribe: [email protected] List FAQ: http://www.codify.com/lists/ozmoss Other lists you might want to join: http://www.codify.com/lists
