Monday, January 13, 2014

How to specify a single subdomain for a non-wildcard SSL certificate

Thanks:

http://blog.goodcoresoft.com/host-name-ssl-bindings-iis7/

Although not very well documented, IIS does support multiple host headers for SSL bindings. Following are the steps to configure it.
  1. Install the SSL certificate on IIS (http://www.sslshopper.com/article-installing-an-ssl-certificate-in-windows-server-2008-iis-7.0.html)
  2. From the start menu select “Run”.
  3. Type “MMC” and hit enter; this will launch the Microsoft Management Console.
  4. Select File –> Add / Remove Snap-in.
  5. Select Certificates from the “Available snap-ins” list and hit the add button.
  6. Select the “Computer Account” option when asked which certificates the snap-in will manage.
  7. Click “OK”
  8. Look in the appropriate folder the certificate was originally installed in, if the certificate is self signed it can be found under “Personal”.
  9. Right click on the certificate name and select properties.
  10. Change the friendly name such that it starts with *

And voila, now you can specify a host name in the bindings box, specifically for the single sub-domain your certificate is actually valid for