This is the third part in a series of posts about Using SSL on a Sitecore environment, I hope you enjoy it!
On my last two posts (part 1 and part 2), you saw an overview of SSL, how to create a self-signed certificate, few tricks & tips, and how to deal with Multiple Certificates for the same website.
In today’s post, I’ll share some experience while setting up IIS using Subject Alternative Names (aka SAN certificates).
Let’s see
Step-by-Step
IMPORTANT: Please note that I am using a self-signed certificate. If you want more information how to generate your own, please check Sitecore – Using SSL Part 1 post!
Scenario – SAN certificate under the same website
Assuming you have a SAN certificate, which means multiple domains are present in the same file.
1. Open IIS, expand sites
2. Select the Site you want to use the SAN certificate, right-click on it then Edit Bindings
3. In Site Bindings, click Add
4. In Add Site Binding, choose Type HTTPS, choose SSL Certificate (san1.com), and then click Ok and Close in Site Bindings
Let’s test it!
Please note that I already have san1.com in my hosts file (C:\Windows\System32\drivers\etc\hosts) pointing to 127.0.0.1
Open a browser and access https://san1.com
YAY! It worked! Now, let’s test another domain present in the same SAN certificate.
How to check domains present in a certificate (PLUS!!!!!)
There are at least three different ways to check the domains which belongs to a certificate, I’ll share the one I think it is the easiest.
1. Open IIS, look for Server Certificates at your right panel (Home), then double click it
2. Find the certificate you want to check, and double click it
3. Go to Details tab
4. Scroll down and find the Field named Subject Alternative Name
All domains listed here are part of the certificate you used before.
Please note that I already have san2.com and sandomains.com in my hosts file (C:\Windows\System32\drivers\etc\hosts) pointing to 127.0.0.1
Let’s test them, open a browser and type https://san2.com and then https://sandomains.com
I hope you liked it, thanks for reading! I’ll see you on my next post.
Deixe um comentário