Reputation: 31
OpenSSL Wildcard Certificate and hostname Certificate
What CNAME do I need to generate a wildcard certificate and a hostname certificate in one.
Eg. I can generate *.blah.com and also blah.com, but *.blah.com doesn't match blah.com.
I want to know how I can generate a request to match both.
Thanks.
Upvotes: 1
Views: 996
Answers (1)
Reputation: 9395
Since, your certificate is *.blah.com, it will not match to blah.com. It will only match to single level sub-domain of blah.com. Not event to a.b.blah.com.
To match certificate both, you can use subjectAltName extension and mention blah.com in its DNS here. Now, it will also match to blah.com.
To see the effect of subjectAltName, open https://kotak.com and https://www.kotak.com. Browser will open both without any complaint. This is because, in subjectAltName, it has also mentioned kotak.com.
Upvotes: 3
Related Questions
- wildcard certificate does not work for sub-domain
- How does wildcard ssl certificate match domains
- HostNameVerifier is not called for sites with wildcard or SAN certificate
- Wildcard SSL with Multiple Domains
- How do I create my own wildcard certificate on Linux?
- What is the format of wildcard certificate name?
- Non-TLD wildcard in SAN for self-signed ssl cert
- SSL - self signed certificate with wildcard
- Handling the Host names, Subject Alternative names in certificate
- SSL certificate - basic or wildcard question