Home
%3CLINGO-SUB%20id%3D%22lingo-sub-287850%22%20slang%3D%22en-US%22%3EBinding%20Multiple%20Sites%20With%20Single%20SSL%20Certificate%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-287850%22%20slang%3D%22en-US%22%3E%0A%20%26lt%3Bmeta%20http-equiv%3D%22Content-Type%22%20content%3D%22text%2Fhtml%3B%20charset%3DUTF-8%22%20%2F%26gt%3B%3CSTRONG%3EFirst%20published%20on%20MSDN%20on%20May%2002%2C%202017%20%3C%2FSTRONG%3E%3CBR%20%2F%3EOne%20of%20our%20Premier%20customers%20called%20me%20the%20other%20day%20needing%20assistance%20on%20running%20multiple%20web%20sites%20with%20a%20single%20SSL%20certificate%20using%20the%20same%20port.%20The%20idea%20was%20clever%2C%20especially%20when%20you%20have%20many%20several%20sites%20but%20only%20a%20handful%20of%20SSL%20certificates.%20But%20how%20do%20you%20solve%20this%20one-Cert-fits-all%26nbsp%3Bissue%3F%20%3CBR%20%2F%3E%3CBR%20%2F%3EThere%20are%20two%20ways%20to%20solve%20this%20puzzle%20depending%20on%20you%20situation%3A%20%3CBR%20%2F%3E%E2%80%A2%20Wildcard%20certificate%20%3A%20when%20sites%20belong%20to%20the%20same%20domain%20%3CBR%20%2F%3E%E2%80%A2%20Unified%20Communications%20Certificate%20(UCC)%3A%20when%20sites%20belong%20to%20different%20domains%20%3CBR%20%2F%3E%3CBR%20%2F%3EWildcard%20Certs%20are%20more%20common%20than%20UCC.%20Wildcard%20Certificates%20use%20Subject%20Alternative%20Names%20(SANs)%20to%20secure%20a%20domain%20and%20all%20of%20its%20first-level%20subdomains.%20%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F60055iEEF027FD1CC96439%22%20%2F%3E%20%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20For%20my%20customer%2C%20he%20chose%20the%20Wildcard%20route.%26nbsp%3BSo%2C%26nbsp%3Bwe%20asked%20his%26nbsp%3BCertificate%20vendor%20to%20issue%20him%20a%20wildcard%20certificate%20with%20a%20friendly%20name%20that%20matches%20his%20domain%20suffix.%20%3CBR%20%2F%3E%20%3CBR%20%2F%3E%20For%20example%3A%20%3CBR%20%2F%3EYou%20have%202%20sites%3A%20mystie1.%20%3CSTRONG%3Emystie.com%20%3C%2FSTRONG%3E%2C%20mystie2.%20%3CSTRONG%3Emysite.com%20%3C%2FSTRONG%3E%3CBR%20%2F%3ESo%20ask%20your%20certificate%20vendor%20to%20issue%20a%20wildcard%20certificate%20with%20this%20friendly%20name%3A%20%3CSTRONG%3E*.mysite.com%20%3C%2FSTRONG%3E%3CBR%20%2F%3E%3CBR%20%2F%3E...And%20it%20solved%20the%20problem!%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-287850%22%20slang%3D%22en-US%22%3EFirst%20published%20on%20MSDN%20on%20May%2002%2C%202017%20One%20of%20our%20Premier%20customers%20called%20me%20the%20other%20day%20needing%20assistance%20on%20running%20multiple%20web%20sites%20with%20a%20single%20SSL%20certificate%20using%20the%20same%20port.%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-287850%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Ecertificate%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIIS%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Ekerberos%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Eschannel%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESSL%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Etls%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EWebApp%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Ewildcard%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Microsoft
First published on MSDN on May 02, 2017
One of our Premier customers called me the other day needing assistance on running multiple web sites with a single SSL certificate using the same port. The idea was clever, especially when you have many several sites but only a handful of SSL certificates. But how do you solve this one-Cert-fits-all issue?

There are two ways to solve this puzzle depending on you situation:
• Wildcard certificate : when sites belong to the same domain
• Unified Communications Certificate (UCC): when sites belong to different domains

Wildcard Certs are more common than UCC. Wildcard Certificates use Subject Alternative Names (SANs) to secure a domain and all of its first-level subdomains.



For my customer, he chose the Wildcard route. So, we asked his Certificate vendor to issue him a wildcard certificate with a friendly name that matches his domain suffix.

For example:
You have 2 sites: mystie1. mystie.com , mystie2. mysite.com
So ask your certificate vendor to issue a wildcard certificate with this friendly name: *.mysite.com

...And it solved the problem!