Wild card certs and www.subdomain.domain.com

I have a wild card cert set up for a client who has a lot of sites with sub-domains. Is there a way to somehow get AWS to redirect WWW.sub-domain.domain.com to sub-domain.domain.com so the cert if valid (I know wild card certs only support Subs, not sub-sub domains)?

주제

네트워킹 및 콘텐츠 전송 보안, 신원 및 규정 준수

태그

아마존 루트 53 AWS 자격증 관리자 클래식 로드 밸런서

언어

English

Irvin

질문됨 2달 전382회 조회

1개 답변

최신
최다 투표
가장 많은 댓글

이 답변이 도움이 되었나요?커뮤니티가 여러분의 지식을 활용할 수 있도록 정답을 찬성하세요.

You cannot do an HTTPS redirect like that - as the first TLS connection would still be to a URI that is not in the subject alternative names of the certificate.

If you have a domain structure as follows:

www.sub-domain.domain.com, but also want to have a domain hosted at sub-domain.domain.com`

Then the www portion is another sub-domain, so your certificate needs to include that as well. You wold therefore need a certificate containing at least the following names.

sub-domain.domain.com
www.sub-domain.domain.com

And you are right - some browsers will support *.*.domain.com in subject alternate names (Chrome for instance), but many CAs will not allow you to issue a certificate like that - thus you can do the following.

*.sub-domain.domain.com *.other-sub-domain.domain.com

전문가

Max Clements

답변함 2달 전

전문가

Giovanni Lauria

검토됨 2달 전

Irvin
2달 전
That you Max. Can the cert be for domain, .domain, and www..domain or do I need to be specific about the sub-domains?

Wild card certs and www.subdomain.domain.com

관련 콘텐츠