|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
One Virtual Directory, Many SSL Certificates?I would like to have one virtual directory containing my ASP.NET web application. The web application will serve pages for various stores such as www.store1.com, www.store2.com, www.store3.com and so on. When one goes to a secure checkout, I want to keep them in the same domain; for example www.store1.com/Checkout.aspx. I do not want to send all of the stores to a different secure URL such as www.storespay.com. Is it possible to install several SSL certificates (one for each domain) in one virtual directory and serve the pages as if they cam from that domain such as www.store1.com/Checkout.aspx? I appreciate your help. Thanks, Ricardo You can't use multiple certificates.
You'd either need to create multiple websites that point to the same content on disk, and assign one cert per website -or- Get one certificate with multiple Subject Alternate Names (SANs) assigned to the certificate - one for each website Cheers Ken Show quoteHide quote "Ricardo" <Rica***@discussions.microsoft.com> wrote in message news:250CF380-9B61-4A31-A881-EEC5301F40A6@microsoft.com... > The following is the situation: > > I would like to have one virtual directory containing my ASP.NET web > application. The web application will serve pages for various stores such > as > www.store1.com, www.store2.com, www.store3.com and so on. > > When one goes to a secure checkout, I want to keep them in the same > domain; > for example www.store1.com/Checkout.aspx. I do not want to send all of the > stores to a different secure URL such as www.storespay.com. > > Is it possible to install several SSL certificates (one for each domain) > in > one virtual directory and serve the pages as if they cam from that domain > such as www.store1.com/Checkout.aspx? > > I appreciate your help. > > Thanks, > > Ricardo On 1/28/2009 11:23 AM, Ricardo wrote:
> Is it possible to install several SSL certificates (one for each No, what you are wanting to do is not possible.> domain) in one virtual directory and serve the pages as if they cam > from that domain such as www.store1.com/Checkout.aspx? SSL is negotiated as at the transport (connection) layer, before the application (HTTP) layer. As such it is impossible to determine what SSL certificate to use because that it declared after the SSL connection is negotiated. That being said, you can configure multiple virtual server (each on it's own IP using it's own SSL certificate) using a common document root and virtual directory. Grant. . . . 
Other interesting topics
Unable to upload files over 1MB
SSL vs Windows Integrated Security dynamic client authentication Managing IP restrictions in IIS 6.0 - nightmare! Multiple website in single IP, host header and SSL problem Delegation: IIS Server setup in typical 3-tier scenario. IIS authentication (kerberos and Integrated security) Re: Authentication prompts with wrong domain https and Local System account IIS 7.0 Full install on Vista Ult. 64-bit SP1 Virtual Server acces |
|||||||||||||||||||||||
