Question Install public CA SSL Cert On IIS Failover Cluster


  • Hi All

    We have windows server 2008 R2 Ent installed on two Identical Servers to be installed IIS 7 (Web1 & Web2). The Computers are configured in an Active Passive Failover configuration.

    My experience in the past has been that while installing a public CA SSL Cert On A single server you generally have to generate a CSR and give that to the public CA cert provider after which they will provide you with the cert. You then take the cert and install it on the server.

    How might this process change for installing an SSL Certificate in the cluster environment described above?

    My concern is that if i generate a CSR on Web1 and Web1 Fails over to web2 that web2 will not be aware of the private key used to sign the CSR?

    How should the architecture of IIS be in a failover mode?
    Are these concerns would you work around this?

    Thanks in advance for your help

    Thursday, November 08, 2012 9:32 PM