Hi, I have a magento based ecommerce website. In have to integrate a payment method which requires a certificated delivered from a specific certification authority not recognized by browsers. Then I have to use 2 diffrent certificates, one for the payment and the other for the remaining secure operations. Is it configurable in apache? Thank you.
Hi ! If they are on different domains than it can be done but you will need a second IP address. If both payment and the other secure pages are on same domain, you can't do it.
That's not correct - people should start using SNI, which allows you to use more than just one certificate on the same IP.
That is correct, but not a lot of people know how to enable it and SNI does not work under IE on Windows XP no matter what version of IE you're using.
I wouldn't even want people who are using IE visit my website But yes, you're right about that and it could be an issue. However, it won't hurt to put bit of pressure on M$, so they finally get their products straight. If for example Google would switch to SNI, there would be so many upset Windows users, that they would surely release a patch. This way the few IE users force webmasters and hosting companies to waste hundreds of thousands of IPv4s, just for SSL.
The IE and SNI issue is only present on WinXP machines. If they are running Vista and upwards, IE7+ works with SNI by default. So, once WinXP will disappear, the SNI issue will also be resolved. As for the patch, not going to happen since WinXP is now EOL
The best way to do this is to have multiple IPs and use one for each certificate, especially because you want the certificate to authenticate and not prompt users to accept an invalid cert (I'm assumign).