一台服务器上用于多个网站的SSL [英] SSL on a single server for multiple web sites

问题描述

这是我的情况:

默认网站已经受到SSL证书的保护，其通用名称包括以下内容:

default website on IIS 6.0 is already protected by an SSL cert with common names covering the following:

domainname.com www.domainname.com

domainname.com www.domainname.com

我在同一IIS服务器上有一个新网站，需要使用以下通用名称的SSL证书对其进行保护:

I have a new website on the same IIS server and need to protect it with an SSL cert with the following common name:

subdomainname.domainname.com(与默认域名相同)

subdomainname.domainname.com (same domainname as default)

我没有自由向服务器添加新IP地址.无论出于何种原因，都不是对基础结构友好的请求.

I do not have the freedom to add a new IP address to the server. Not an infrastructure friendly request for whatever reasons.

我们还通过以下方法在另一台服务器上的另一证书保护了我们的Exchange网络邮件:

We also have our Exchange webmail protected by another cert on another server with:

webmail.domainname.com

webmail.domainname.com

我不相信我可以使用通配符证书，因为交换位于其他服务器上，对吗?

I do not believe I can use a wildcard cert because exchange is on a different server, correct?

是否可以使用通配符服务器，如何使用新证书保护主IIS服务器上的新子域?我是否用代表子域网站的新通用名称和默认网站通用名称替换默认证书.可以在IIS 6.0上的多个网站上为所有服务器分配所有需要保护的通用名称的同一证书吗?

Whether I can or not use a wildcard server, how can I protect the new subdomain on the main IIS server with a new cert? Do I replace the cert on the default with the new common name representing the subdomain web site and the default web site common names. Can I assign the same cert on the same server with all common names needing protection to multiple websites on IIS 6.0?

感谢您为解决此问题提供帮助.

Thanks for any help in getting this resolved.

推荐答案

为自己省钱，只需购买1个通配符SSL 并将其导出到您喜欢的许多服务器.包括ssl.com(我是其中一部分-免责声明)在内的大多数CA都提供无限的服务器许可证.或大多数CA现在也提供了一种受限UC形式，您可以在UC证书上获得有限数量的多个域.举例来说，SSL.com Premium可以为您提供3个域，但基本上是UC(或SAN)证书，价格约为$ 74，比通配符便宜.因此，如果您只有3个子域，请使用 SSL.com Premium

Save yourself some money, just buy 1 Wildcard SSL and export it to as many servers you like. Most CA's including ssl.com (for which I am a part - disclaimer) offer unlimited server licenses. Or most CA's now also offer a form of limited UC whereby you get a limited number of multiple domains on your UC cert. Case in point SSL.com Premium gets you 3 domains but is basically a UC (or SAN) certificate and at ~$74 is cheaper than a wildcard. So if you only have 3 subdomains, go with the SSL.com Premium

您可能还会发现 http://www.ssltools.com/manager 对管理Windows很有用ssl证书.

You may also find http://www.ssltools.com/manager useful in managing your Windows ssl certs.

这篇关于一台服务器上用于多个网站的SSL的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！