takito Posted July 1, 2014 Posted July 1, 2014 Hello, I want to turn on SSL for my new site, so I got a free 90 Days certificate as a starting point, and later on i will issue a 1 year certificate from StartSSL. I created a private key, issued a CSR, and created my CRT as a final step. Than i tried to access my site by adding 'S' to 'http://', but i got nothing... 'https://' just didn't work.So i read the wiki and found out that i'll need to purchase a static IP for it to work, so i have a few questions: 1. Why do i need a static IP while the certificate is issued to my domain name ? i don't really understand the logic...2. Can i use a self signed certificate to avoid using a static IP ?3. Is it possible to get a free static IP / any other free solution ? (even a temp solution will be nice..) Thank you for your time and good will,Takito.
Ice IT Support Posted July 1, 2014 Posted July 1, 2014 Yes, a dedicated IP is required because the TLS handshake happens before any HTTP headers are sent. On a shared IP, the server does not know which certificate to use because it does not know which site is being accessed. It doesn't matter whether the certificate is self signed or signed by a CA if the server doesn't know which certificate to use. The fee for a dedicated IP is what our ISP charges us. We can't provide a free IP for that reason.
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now