1

I know there are many questions out there, but none seemed to address specifically what I am after.

I have one instance of IIS, with two separate applications on it. Each application works on its own URL, with it's own IP address and domain, and each domain has its own certificate.

How can I set up IIS to server up the correct combination based on the correct host?

masegaloeh
  • 17,978
  • 9
  • 56
  • 104
Paul Grimshaw
  • 11
  • 1

1 Answers1

1

Through bindings. Assuming you've already imported your SSL certs:

  1. Create 2 web sites in IIS.
  2. Edit the https bindings for each site to include bindings for the respective IP's

enter image description here

You'd set your IP address for the IP of the respective domain name and then select that domain's certificate in the drop-down. Then you want to make sure that no other sites have bindings for those domain names or IP's.

That should do it for you.

squillman
  • 37,618
  • 10
  • 90
  • 145
  • That's what i did... however when i put in the IP address, I can no longer reach the site. Any ideas? – Paul Grimshaw Mar 31 '14 at 15:19
  • What are the error(s) you get? – squillman Mar 31 '14 at 15:32
  • Not a lot. Just a 404 page not found when i change the IP address from * to the specific one. Tried with host headers and appCmd, still no joy. Can only seem to get it working with *, which doesnt' allow me distinguish between the sites. – Paul Grimshaw Mar 31 '14 at 15:43
  • Do you have a wildcard binding on any other sites? – squillman Mar 31 '14 at 15:46
  • Only on a custom port (6326)... just stopped this website and still no joy however – Paul Grimshaw Mar 31 '14 at 15:50
  • That is how it's supposed to work - definitely. The IP Addresses are valid on the server, aren't they? Or do you "just" NAT? – MichelZ Mar 31 '14 at 16:19
  • What you did should basically work but do require that everything be valid on the server. This includes certificates being installed to the machine account, IPs be set up properly on server NICs, and DNS be set up to point to the correct IPs. Having done this, all specific bindings should just work. Just make sure you removed all wildcards. – Lior Abel Apr 24 '15 at 07:44