Configuring Host Headers to use SSL in IIS 7 or 7.5

Ever try to apply a Wildcard certificate in IIS to multiple sites and use Host Headers?

IIS allow you to use one SSL certificate for multiple IIS websites on the same IP address via Host Header values. Through the IIS Manager interface, IIS only allows you to bind one site on each IP address to port 443 using an SSL certificate. If you try to bind a second site on the IP address to the same certificate, IIS 7 will give you an error when starting the site up stating that there is a port conflict. In order to assign a certificate to be used by multiple IIS sites on the same IP address, you will need to set up SSL Host Headers by following the instructions below.

Setting up SSL Host Headers on IIS 7

  1. Obtain an SSL certificate and install it into IIS 7
  2. Once you have the Certificate installed open a Command Prompt with elevated permissions
  3. Change directory to C:\Windows\System32\Inetsrv\ (“cd C:\Windows\System32\Inetsrv\” )
  4. Run the following command for each site that you need SSL host headers configured for.
    • appcmd set site /site.name:”<IISSiteName>” /+bindings.[protocol=’https’,bindingInformation=’*:443:<hostHeaderValue>‘]
    • Replace <IISSiteName> with the name of the IIS web site and <hostHeaderValue> with the host header name for that site
  5. Open IIS and validate that the IIS Site binding is configured with HTTPS and the Host Header Value
  6. Test your site(s).
Advertisements

One thought on “Configuring Host Headers to use SSL in IIS 7 or 7.5

  1. I want to configure host header with SSL Cert using II 7.5

    i have completed following this steps

    Generate Your IIS Self Signed Certificate

    1) Click on the Start menu, go to Administrative Tools, and click on Internet Information Services (IIS) Manager.

    2) Click on the name of the server in the Connections column on the left. Double-click on Server Certificates.

    3) In the Actions column on the right, click on Create Self-Signed Certificate…

    4) Enter any friendly name and then click OK.

    Bind the Self Signed Certificate

    1) In the Connections column on the left, expand the sites folder and click on the website that you want to bind the certificate to. Click on Bindings… in the right column.

    2) Click on the Add… button.

    3) Change the Type to HTTPS and then select the SSL certificate that you just installed. Click OK.

    4) You will now see the binding for port 443 listed. Click Close.

    step 3 and 4 are not allow to enter host name when i select HTTPS in type so i found solution and got command for add bindings with HTTPS,Host Name and also select SSL cert.

    appcmd set site /site.name:”Default Web Site” /+bindings.[protocol=’https’,bindingInformation=’*:443:www.xyz.com’]

    but problem is https://localhost working fine but https://www.xyz.com is keep loading

    https://localhost is working with port number (80) https://www.xyz.com is working with port number (443)

    why should be this not working

    please help me thanks

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s