AWS Wildcard Certificate

does ".example.com" protects "www..example.com" ?

Topics

Networking & Content Delivery Security, Identity, & Compliance

Tags

Amazon CloudFront Amazon Route 53 AWS Certificate Manager

Language

English

sanalAgeye

asked 6 months ago429 views

2 Answers

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Accepted Answer

does "*.example.com" protects "www.*.example.com" ?

No, it doesn't. "*.example.com" does not protect such as www.login.example.com as stated in the following page.

https://docs.aws.amazon.com/acm/latest/userguide/acm-certificate.html

When you request a wildcard certificate, the asterisk (*) must be in the leftmost position of the domain name and can protect only one subdomain level. For example, *.example.com can protect login.example.com and test.example.com, but it cannot protect test.login.example.com.

answered 6 months ago

EXPERT

Didier_Durand

reviewed 6 months ago

sanalAgeye
6 months ago
is it possible to give www.*.sub.example.com as wildcard ? Otherwise i will have create for every subdomain
HS
6 months ago

When you request a wildcard certificate, the asterisk (*) must be in the leftmost position of the domain name

Therefore, the answer is NO. www.*.sub.example.com is not a valid wildcard domain name.

If you want to protect such as www.app1.sub.example.com, www.app2.sub.example.com, yes you must issue each ACM certificate and register each DNS record to protect your domain.

Is it possible to have something like this in a certificate, Where each domain will be redirected to their separate s3 buckets

sanalAgeye

answered 6 months ago

HS
6 months ago
The certificate is able to validate the specified domains, but an S3 bucket does not support a custom domain.

You can add a CNAME record with my-bucket.main.com that points to my-bucket.s3.ap-northeast-1.amazonaws.com to implement redirection, but SSL will not be valid.

Relevant content

Can I use wildcard certificate for API gateway? Do certificates clash?
jalynn2
asked a year ago
AWS::ECS::TaskDefinition DockerLabels: wildcard certificate and variables
vadim-vsm
asked 2 years ago
Can't remove wildcard certificate
DanielK
asked a year ago
Encountering issue with Wildcard SSL certificate AWS Lightsail WordPress multisite certbot tool
johgrah
asked 2 days ago
How do I install a wildcard Let's Encrypt SSL certificate in a Bitnami stack that's hosted on Lightsail?
AWS OFFICIALUpdated 2 months ago
How do I install a wildcard Let's Encrypt SSL certificate in Amazon Lightsail?
AWS OFFICIALUpdated 17 days ago
How does the ACM managed renewal process work with email-validated certificates?
AWS OFFICIALUpdated 2 years ago
Why does CloudFront show my old Amazon-issued SSL certificate, even after I renew or reimport the certificate?
AWS OFFICIALUpdated a year ago
Building Security Conscious Video Streaming Infrastructure on AWS, Lesson 2: Protect Your Buckets
EXPERT
BCole2019
published 6 months ago
Discounts on AWS Certification Exams
EXPERT
kentrad
published 8 months ago