Share via

In Azure cloud virtual machine unable to install ucc certificate in iis webserver

Durgaraj 1 Reputation point
2020-12-17T10:09:18.823+00:00

i have virtual machine from cloud azure i have hosted wordpress site in the iis webserver so i have ucc ssl certificate which is valid for 5 domains but the same certificate is not getting applied to other domains

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
9,013 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. prmanhas-MSFT 17,946 Reputation points Microsoft Employee Moderator
    2020-12-28T15:23:39.023+00:00

    @Durgaraj Ideally your all web applications can be secure in Azure App Service by configuring an SSL certificate binding. SAN SSL is an ideal solution to secure all applications with a single certificate. Azure app service covers custom domains and matches specified subjectAltName values.

    To secure all web applications with a single IP, it is essential that choose SSL type “SNI SSL” under the SSL binding option. Otherwise, you need to purchase different IP addresses for each web application and select “IP based SSL” option.

    • IP based SSL associates a certificate with a domain name by mapping the dedicated public IP address of the server to the domain name. This requires each domain name (contoso.com, fabricam.com, etc.) associated with your service to have a dedicated IP address. This is the traditional method of associating SSL certificates with a web server.
    • SNI based SSL is an extension to SSL and Transport Layer Security (TLS) that allows multiple domains to share the same IP address, with separate security certificates for each domain. Most modern browsers (including Internet Explorer, Chrome, Firefox and Opera) support SNI, however older browsers may not support SNI.
      Microsoft suggests to use CA signed certificate because of self-signed certificates are not trusted by the browser.

    You can refer to below articles for more information:

    https://www.ssl2buy.com/wiki/server-name-indication-sni-use-multiple-ssl-on-a-single-ip

    https://learn.microsoft.com/en-us/azure/app-service-web/web-sites-configure-ssl-certificate#bkmk_subjectaltname

    Since we are not sure about the exact error you are getting I have provided generic practices above.

    Hope it helps!!!

    Please "Accept as Answer" if it helped so it can help others in community looking for help on similar topics.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.