web site certificate issue | ansaurus

tags:

views:

38

answers:

1

Q:

web site certificate issue

Hello everyone,

I am working on IIS 7.0 on Windows Server 2008 Enterprise x64. I want to know if I apply for a certifcate from Verisign, is the certificate bind to domain name or bind to computer? Any comments to my 2 concerns below?

More details,

if the certificate is bound to computer other than domain name, then if the computer has some physical H/W issues, how could I transfer the certificate to another computer?
if I have a server farm of two computers, which two physical machines map to the same DNS domain name to load balance by DNS round robin name resolution. If certificate binds to machine other than domain name, how could I install the certificate on two computers to serve https from two computers?

thanks in advance, George

+2 A:

SSL certs are bound to a given domain name (or domain name pattern, in the case of wildcard SSL certs); you can move them from machine to machine trivially.

In the case of your round-robin server farm, the same SSL cert can be installed on both IIS servers -- in the eyes of IIS on each server, it is responding for the given domain, and the SSL cert will validly reflect that domain.

delfuego 2009-12-14 16:40:42

Cool, question answered!

George2 2009-12-14 16:55:52

Watch out for licencing issues with your SSL provider. There is usually a limit to how many machines you are permitted to install it on. GlobalSign, for example, has a limit of 3 machines per cert.

gahooa 2009-12-14 16:59:21

I see, thanks man!

George2 2009-12-14 17:07:59

related questions

Starting/Stopping a service on Windows 2008 Server from the command line - access denied

MySQL 5 (32bits) on Windows 2008 server

Webdav windows server 2008 not allowing doc files to save

Access denied when creating a virtual directory via Web Deployment Project

Should I upgrade to Windows Server & Exchange 2008?

Programs don't work on Vista and Server 2008

.NET Remoting and Server 2008 (64 Bit)

Windows 2008 VPS hosting experiences

WebResource.asd giving 403 error in ASP.Net Post backs using IIS7

How do you Install a SSL Certificate

Windows Server 2008 SSTP VPN in a Non-Domain Environment?

How do you enable the network on a virtual machine running Vista x64?

How to optimize compiling a 32 bit application in Visual C++ 2005 on a 64 bit windows sever 2008

Is it possible, by any stable method, to enable ReadyBoost on Windows Server 2008?

Where do I enter the Windows Server 2008 key after installing it?

Windows Server 2008 Virtual Hosting?

Detecting if WinHelp is Installed on Vista or newer Windows

Windows Server 2008: COM error: 0x800706F7 - The stub received bad data

How can I change IE's homepage without opening IE?

Will this hardware be 64bit Windows Server 2008 compatible?

Remotely starting and stopping a service on a W2008 server

How can I prevent a server from becoming locked after a Remote Desktop session

Is it safe to install SVN on a production win2008 web server?

Windows 2008 Server as a developers desktop OS

Is Windows Server 2008 "Server Core" appropriate for a SQL Server instance?