panthro
Reputation: 24099
Do I need an SSL certificate for www and non www?
If my server is set up to redirect users who type the non www URL, e.g.
example.com -> www.example.com.
Do I need to get a certificate for both domains:
example.com, www.example.com
Upvotes: 3
Views: 3577
Answers (1)
Anand Bhat
Reputation: 5819
Yes. If a user types in https://example.com, the TLS handshake between their browser and your server happens before the redirect. Users will see an error message in their browser indicating the site's certificate is invalid.
If you're using Let's Encrypt you can include both www and non-www domains in the same certificate. Most other certificate vendors also do this on request.
Upvotes: 4
Related Questions
- Letsencrypt certificate for www and non-www domain
- How to apply LetsEncrypt SSL certificate to WWW domain?
- SSL certificate issue with www
- Add certificate to my site when accessing without “www”
- How to redirect www to non-www using certbot for HTTPS & nginx
- HTTP + HTTPS + www + non-www Apache config
- Should an SSL certificate be made for www.domain.com or domain.com and how should it be configured?
- install www and non-www ssl cert apache
- Add www to URL with and without SSL
- What subdomain do I certify if I don't use www?