Create self-signed certificates for each site requiring Server Name Indication
The SelfSSL tool is installed with IIS, and allows you to create self-signed certificates that include the ID of the site within the certificate.
- In the Internet Information Services (IIS) Manager, click Sites and make note of the ID of each website using the self-signed certificate that has Requires Server Name Indication selected.
- Open a command prompt and navigate to C:\Program File (x86)\IIS Resources\SelfSSL.
- At the prompt type the parameters for the certificate, ensuring you specify the site ID for the site requiring Server Name Indication. For example:
NOTE
In the command, /V is the number of days the certificate is valid, /S is the ID of the site. Use the values that correspond to your site in the command.
selfssl.exe /N:CN=TEST.SITE.3 /K:1024 /V:<days-valid> /S:<site-ID> /P:443
The certificate is created.
- When prompted to replace the SSL settings for the site, type
Y. - Modify the site to use the new certificate in the bindings. See For more information refer to Identify the certificate to be used by each website..