I have a single site in IIS with a blank host header and 50+ unqiue domains that all point to this one site. Is there a catch-all or wildcard SSL available that I can install on the site so it will work with each domain? I know wildcard certs exist but I think they’re limited to a single TLD.
I was hoping to install multiple certs on a single site since each domain already has a cert purchased but that isn’t going to happen.
I had a look at IIS 7 SSL for multiple sites with a single IP which points to http://www.sslshopper.com/article-ssl-host-headers-in-iis-7.html which says I need a unified communications certificate http://www.sslshopper.com/unified-communications-uc-ssl-certificates.html
Any ideas? Will the unified cert work?
IIS 7.5
Wildcard SSL certs are for a single domain. For your situation you’d have to have a certificate that worked for every domain, which, err, wouldn’t be that safe, you could, for example, spoof hotmail.com
However there is an attribute in X509 called Subject Alternative Name (SAN). That allows for a fixed list of domains for which the certificate may be used on, but the list is fixed at issuance time. Your link says it uses that method, but I’m confused why they say they’re primarily for UC server, they work fine as plain old HTTPS certificates. I’m using one right now on a development box.
In case you think they’re specialised Verisign do them too,as does Entrust