To test a specific embedded client, I need to set up a web server serving a couple of SSL (HTTPS) sites, say "main.mysite.com" and "alternate.mysite.com". These should be handled by the same certificate, with a Subject Name of "main.mysite.com" and a Subject Alternative Name of "alternate.mysite.com". This certificate needs to be in an authority chain back to a 'proper' CA (such as GoDaddy, to keep the cost down).
My question is, are there any good tutorials on how to do this, or can someone explain the process? What sort of parent certificate do I need to purchase from the CA provider?
My understanding of SSL certificates is limited, but as Manuel said in Fawlty Towers, "I learn…".
I'm happy to work in Windows (IIS) or Linux (Apache) (or even OSX, for that matter).
Thanks in advance.
Best Answer
The tutorials are here:
http://www.sslshopper.com/article-ssl-host-headers-in-iis-7.html
http://www.sslshopper.com/article-how-to-configure-ssl-host-headers-in-iis-6.html
You don't need to worry about the parent certificate. Just get a certificate from a trusted provider (like GoDaddy) with all the names that need to be secured and follow those tutorials to set up each site to use that SSL certificate.