Solved

wildcard certificate by certification authority

Posted on 2013-12-24
7
342 Views
Last Modified: 2014-01-13
hello experts.
i want to create certificate for multiple subdomains for one domain.
i try to use the link  http://technet.microsoft.com/en-us/library/ff625722(v=ws.10).aspx#BKMK_Security   but have one problem.
i cant create request for web server
please see the attached file
0
Comment
Question by:ameriaadmin
  • 4
  • 3
7 Comments
 

Author Comment

by:ameriaadmin
ID: 39737806
and is there is a method for creating one certificate for one domain   example.com  and   *.example.com ?
0
 
LVL 29

Expert Comment

by:Rich Weissler
ID: 39738351
Yes, example.com would be different from *.example.com.
To create the CSR for the wildcard cert, I'd use certreq, generating an INF file with the wildcard subject.
The wildcards I've used in the past, however, haven't seen able to bridge more than one level in the heirarchy.  (So, for example, *.example.com would be okay with host one.example.com, but I'd get a certificate error contacting host.one.example.com.)
0
 

Author Comment

by:ameriaadmin
ID: 39738902
we generate a request for *.example.com. and now when we use it have certificate error on example.com and all is ok with subdomains.   https://some.example.com works ok and https://example.com with certificate error.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 29

Assisted Solution

by:Rich Weissler
Rich Weissler earned 500 total points
ID: 39739079
*wince*  Yes, that meshes with what I've seen with wildcard certificates as well.  example.com doesn't match the rule established by *.example.com...  You'd need a 'not-wildcard' for example.com.
0
 

Author Comment

by:ameriaadmin
ID: 39739108
i have a not wildcard for example.com but i need to run all the websites on one server on one port (443).
how can i solve the issue?
0
 
LVL 29

Accepted Solution

by:
Rich Weissler earned 500 total points
ID: 39739307
If it HAS to be on the same port, the only solution I've found has been to add a second IP address to the same server, and bind that IP address with the certificate to 443 for the one website that requires the not-wildcard certificate.
0
 

Author Closing Comment

by:ameriaadmin
ID: 39778468
i solve the problem using another port, and with sub domain, and redirect parent domain (without secure connection) to child domain (with ssl)
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Citrix XenApp, Internet Explorer 11 set to Enterprise Mode and using central hosted sites.xml file.
When you start your Windows 10 PC and got an "Operating system not found" error or just saw  "Auto repair for startup" or a blinking cursor with black screen. A loop for Auto repair will start but fix nothing.  You will be panic as there are no back…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
This Micro Tutorial will give you a basic overview of Windows DVD Burner through its features and interface. This will be demonstrated using Windows 7 operating system.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now