• 15

A PHP Error was encountered

Severity: Notice

Message: Undefined index: userid

Filename: views/question.php

Line Number: 191


File: /home/prodcxja/public_html/questions/application/views/question.php
Line: 191
Function: _error_handler

File: /home/prodcxja/public_html/questions/application/controllers/Questions.php
Line: 433
Function: view

File: /home/prodcxja/public_html/questions/index.php
Line: 315
Function: require_once

name Punditsdkoslkdosdkoskdo

All HTTPS traffic redirecting to one IIS site

We have two sites/applications in IIS:

  1. www.corpsite.com
  2. accounts.corpsite.com

As you can see the accounts app has the same TLD and is the only application/site on the server that makes use of an SSL.


Browsing to https://www.corpsite.com redirects us to https://accounts.corpsite.com, which it shouldn't. We don't make use of SSL on the www.corpsite.com site, only on the accounts site.


If you look at the screentshot named www.corpsite.com.gif you'll see that there's no certificate configured on the site.

enter image description here

The accounts.corpsite.com site on the other hand has the certificate installed.

enter image description here

Anyone able to help?

Thanks, Jacques

      • 2
    • Sorry Greg, one of my team here mentioned that it refers to Common Name, we'll check it. I've got a feeling I know where you're going with this.
      • 2
    • It is not correct if you are attempting to establish a secure session to www.corpsite.com. You may want to amend your question and specify the server response you are expecting, i. e. an error.

Remove the https binding (443) from the site www.corpsite.com.

As a best practice, use a catch-all binding on your main site (as in port 80 without any host header), and specify the host header on your secondary sites.

Note that host headers on SSL is extremely limited in terms of support out there, so even if IIS on 2003 supports it I wouldn't bother to set it up. If you need SSL on more than one site in the future you should add another IP, or move the application to a virtual directory under your main site.

EDIT: I was wrong, very wrong


Seems like every major browser out there supports this now, so I guess the world has moved on since I last checked a few years ago! According to Microsoft, IIS Windows 2003 SP1 and later supports host headers on SSL binding, by using certain command-line tools. Note that you need a wilcard certificate to make it work.

  • 3
Reply Report
      • 1
    • Pauska's answer sounds best. Fortunately for me, the client I'm at doesn't have any Win2k3 servers for me to look at :-) (That I know of, anyway.)
      • 1
    • Thanks Pauska I appreciate the time. It seems though that Wikipedia is reporting that IE6, or any version of Internet Explorer, on Windows XP won't work due to this being a component of the operating system. After reading some more it looks like this issue is by design in Windows Server 2003 and was only fixed in SP1.

It sounds like you have the sites on the same IP? Use Host Headers on both sites with the correct name on each.

  • 1
Reply Report

Trending Tags