1,745 questions
On Unix it is configured in httpd config file. I would look at IIS settings for httpd.
Adding SSL to a website that's not on port 80
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 36%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
Phillips, Keith
701
Reputation points
I've got an IIS issue that hopefully someone here has run into before. I have 5 websites, all of which are on a test Windows 2019 server. Because it is a test system, I can't get alternate names entered into our DNS system (and I don't have rights to that anyway). The websites have the same server name, just different ports, i.e., server1:999, server1:888, etc. One website is required to have SSL enabled, but with the site already assigned to a different port, how can that be configured?
Windows development | Internet Information Services
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 24%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESW%3C/text%3E%3C/svg%3E)
Sam Wu-MSFT 7,561 Reputation points Microsoft External Staff2023-01-11T08:59:50.8533333+00:00 SSL is in no way tied to a single port value; in fact, as a protocol, it can be used over any transport medium, as long as that medium provides a bidirectional stream for arbitrary bytes.
and I find that you have already asked a similar question: Add SSL to a non-80-port web site.
-
Phillips, Keith 701 Reputation points
2023-01-11T12:27:23.05+00:00 My apologies - I did ask the question before, and realized I didn't give enough details. So I decided to try again, after adding a comment to the original question and receiving no more feedback.
Unfortunately, I'm not a network person; I'm a DBA/programmer stuck with managing and upgrading a SharePoint system.
Sign in to comment
6 answers
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 90%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKL%3C/text%3E%3C/svg%3E)
K L 1 Reputation point2023-01-10T18:54:13.203+00:00 -
Phillips, Keith 701 Reputation points
2023-01-11T12:22:32.4033333+00:00 Yeah, if this was a *nix system with Apache, the problem would be easier to resolve.
Sign in to comment -
-
MotoX80 36,291 Reputation points2023-01-11T14:16:10.7166667+00:00 In the Action pane, under Edit Site, click on Bindings. Add an HTTPS site on the desired port and select a certificate to use.
See also:
https://msftwebcast.com/2019/11/create-and-bind-a-self-signed-certificate-in-iis-10.html
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 66%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sanjay Singh 171 Reputation points2023-01-11T16:05:21.26+00:00 Try to add different hostnames with different ports on IIS binding and test. You can add this hostname on the DNS A record to resolve the hostname if needed.
-
Phillips, Keith 701 Reputation points
2023-01-11T16:07:55.8333333+00:00 Unfortunately, I don't have access to the DNS to make additions/changes. That has to be an Official Request (TM) to the powers-that-be.
Sign in to comment -
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 61%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Bruce (SqlWork.com) 77,766 Reputation points Volunteer Moderator2023-01-11T17:02:27.21+00:00 the ssl certificate is tied to the hostname, not the port. the default port for https is 443, but can be overridden. ex:
https://localhost:5001
you must create a ssl cert for the test server dns name and install. then for the site you want ssl, add the protocol and specify a unique port.
your network group should define the certificate so it is trusted. but you can use a self-signed cert. but this will need to be trusted by each client.
-
Lex Li (Microsoft) 6,037 Reputation points Microsoft Employee2023-02-16T09:58:23.1733333+00:00 One common approach is,
- On the test server, create all IIS sites on port 80 and 443 with proper site bindings to match your production server.
- As administrator, modify hosts file on your dev box to include the necessary records there to emulate DNS settings for those domains, so that browsers on your dev box can connect properly to the test server with those domain names. Then you can configure certificates just like your production server.
Once you finish testing on the test server, modify hosts file on your dev box so it switches to use the real DNS records to connect to the production machine.