I have 2 websites on an IIS webserver. Www.website1.com on port 80 and www.website2.com on port 81. On the IIS-ARR server I have created server farm and added my Server. So far so good. Both the web sites will be accessible through IIS-ARR over http. Now I want both the websites to be accessible over https through ARR. For this how should I create the SSL request for ARR server and how many SSL requests needed. What should be the CommonName. Should I deploy both websites on ARR server also.
I believe that 2 SSL requests needed on the IIS webserver. One for www.website1.com with CommonName=www.website1.com and another for www.website2.com with CommonName=www.website2.com. But what about IIS-ARR load balancer? What should be the CommonName?
You can use a certificate with multiple Subject Alternate Names, that is a certificate authorized for several domains. For example create a CSR requesting website1.com;www.website1.com;website2.com;www.website2.com as SAN.
Such a certificate could, once installed where the CSR was created in order to pair it with the private key, be exported as a bundle including the private key then imported on all involved servers.
The certificate bundle file must be safeguarded as not only your servers, but also anyone elses too, could impersonate your sites using it.