Solved

wildcard certificate by certification authority

Posted on 2013-12-24
7
348 Views
Last Modified: 2014-01-13
hello experts.
i want to create certificate for multiple subdomains for one domain.
i try to use the link  http://technet.microsoft.com/en-us/library/ff625722(v=ws.10).aspx#BKMK_Security   but have one problem.
i cant create request for web server
please see the attached file
0
Comment
Question by:ameriaadmin
  • 4
  • 3
7 Comments
 

Author Comment

by:ameriaadmin
ID: 39737806
and is there is a method for creating one certificate for one domain   example.com  and   *.example.com ?
0
 
LVL 30

Expert Comment

by:Rich Weissler
ID: 39738351
Yes, example.com would be different from *.example.com.
To create the CSR for the wildcard cert, I'd use certreq, generating an INF file with the wildcard subject.
The wildcards I've used in the past, however, haven't seen able to bridge more than one level in the heirarchy.  (So, for example, *.example.com would be okay with host one.example.com, but I'd get a certificate error contacting host.one.example.com.)
0
 

Author Comment

by:ameriaadmin
ID: 39738902
we generate a request for *.example.com. and now when we use it have certificate error on example.com and all is ok with subdomains.   https://some.example.com works ok and https://example.com with certificate error.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 30

Assisted Solution

by:Rich Weissler
Rich Weissler earned 500 total points
ID: 39739079
*wince*  Yes, that meshes with what I've seen with wildcard certificates as well.  example.com doesn't match the rule established by *.example.com...  You'd need a 'not-wildcard' for example.com.
0
 

Author Comment

by:ameriaadmin
ID: 39739108
i have a not wildcard for example.com but i need to run all the websites on one server on one port (443).
how can i solve the issue?
0
 
LVL 30

Accepted Solution

by:
Rich Weissler earned 500 total points
ID: 39739307
If it HAS to be on the same port, the only solution I've found has been to add a second IP address to the same server, and bind that IP address with the certificate to 443 for the one website that requires the not-wildcard certificate.
0
 

Author Closing Comment

by:ameriaadmin
ID: 39778468
i solve the problem using another port, and with sub domain, and redirect parent domain (without secure connection) to child domain (with ssl)
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you need to start windows update installation remotely or as a scheduled task you will find this very helpful.
Learn how to PXE Boot both BIOS & UEFI machines with DHCP Policies and Custom Vendor Classes
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question