cajx
asked on
Wildcard SSL
If I have an old SSL certificate from Verisign set up on serverA as:
mail.domain.com
And I need to put that on serverB, but I also need serverA to now have an SSL at this URL:
https://legacy.domain.comĀ
Is the easiest way to get a wildcard SSL? If I do that, do you think I'd have to get it through Verisign, or can I go with GoDaddy now? If I go with GoDaddy, do I need to "turn off" the old certs I have through Verisign?
For instance, I will still have an intra.domain.com through Verisign... but now the wildcard will overlap with that. Is that permitted?
mail.domain.com
And I need to put that on serverB, but I also need serverA to now have an SSL at this URL:
https://legacy.domain.comĀ
Is the easiest way to get a wildcard SSL? If I do that, do you think I'd have to get it through Verisign, or can I go with GoDaddy now? If I go with GoDaddy, do I need to "turn off" the old certs I have through Verisign?
For instance, I will still have an intra.domain.com through Verisign... but now the wildcard will overlap with that. Is that permitted?
GoDaddy sells UCC Certs with multiple names. That may be the solution to your situation.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
for your case I will not advise you to use wildcard SSL all you need is 2 or 3 SAN
I would advise you to issue a new certificate with mail.domain.com and legacy.domain.com and autodiscover.domain.com and then install it on your 2 servers
I would advise you to issue a new certificate with mail.domain.com and legacy.domain.com and autodiscover.domain.com and then install it on your 2 servers
ASKER
Thanks everyone. I ended up just moving the old Cert from old server to new, and then buying another cert for the old server to be "leagacy.mydomain.com". It worked out OK like that and I didn't need two certs on one server for what I needed to do.