• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 381
  • Last Modified:

wildcard certificate by certification authority

hello experts.
i want to create certificate for multiple subdomains for one domain.
i try to use the link  http://technet.microsoft.com/en-us/library/ff625722(v=ws.10).aspx#BKMK_Security   but have one problem.
i cant create request for web server
please see the attached file
0
ameriaadmin
Asked:
ameriaadmin
  • 4
  • 3
2 Solutions
 
ameriaadminAuthor Commented:
and is there is a method for creating one certificate for one domain   example.com  and   *.example.com ?
0
 
Rich WeisslerProfessional Troublemaker^h^h^h^h^hshooterCommented:
Yes, example.com would be different from *.example.com.
To create the CSR for the wildcard cert, I'd use certreq, generating an INF file with the wildcard subject.
The wildcards I've used in the past, however, haven't seen able to bridge more than one level in the heirarchy.  (So, for example, *.example.com would be okay with host one.example.com, but I'd get a certificate error contacting host.one.example.com.)
0
 
ameriaadminAuthor Commented:
we generate a request for *.example.com. and now when we use it have certificate error on example.com and all is ok with subdomains.   https://some.example.com works ok and https://example.com with certificate error.
0
Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
Rich WeisslerProfessional Troublemaker^h^h^h^h^hshooterCommented:
*wince*  Yes, that meshes with what I've seen with wildcard certificates as well.  example.com doesn't match the rule established by *.example.com...  You'd need a 'not-wildcard' for example.com.
0
 
ameriaadminAuthor Commented:
i have a not wildcard for example.com but i need to run all the websites on one server on one port (443).
how can i solve the issue?
0
 
Rich WeisslerProfessional Troublemaker^h^h^h^h^hshooterCommented:
If it HAS to be on the same port, the only solution I've found has been to add a second IP address to the same server, and bind that IP address with the certificate to 443 for the one website that requires the not-wildcard certificate.
0
 
ameriaadminAuthor Commented:
i solve the problem using another port, and with sub domain, and redirect parent domain (without secure connection) to child domain (with ssl)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now