SSL on IIS & Tomcat running on same server

ssl-certificate

Solution 1:

It is possible to install the same certificate on both IIS & Tomcat. The same certificate could also be installed on several different servers, e.g. for regionally located servers for the same domain. The only requirement is that the Common Name of the certificate (or one of the Subject Alternative Names on SAN certificates) matches the servers hostname (on HTTP Host: header i.e. addressbar). In this kind of setup you could have IIS listening on default HTTPS port 443 and Tomcat on alternate 8443.

If you wish to be able to access both on default port 443, you can use IIS as a Reverse Proxy. In this scenario, IIS takes care of the TLS, so you can use the existing HTTP Connector on port 8080 internally (possibly binding it only to localhost) without encryption and only install the certificate on IIS.

Related

Wireless network between buildings
What is the importance of "RpcClientAccessServer" on a database in an Active/Active stretched DAG?
How to use noatime with smbfs
Best method and tools for local IP scanning [closed]
AS400 and Remote Commands
Download public & private keys from Google Cloud Instance
exim 4 : add header to ALL messages
Recommend a content delivery network (CDN) for a specific purpose [closed]
Replication of domain controllers - JRNL_WRAP_ERROR - EventID: 13568
Blocking empty subject line emails from being sent or received?
What are the options for a temporary laptop within a work domain?
Backup Entire USB Drive Containing Bootable Partitions in Debian [duplicate]