Source

Portfolio / hacktuts / apache / notes_wildcard_certs.txt

1
2
3
4
5
6
7
8
Notes on WildCard Certificates
==============================

So you think you need a wildcard certificate? Well they can be awesome because you can use one certificate for all hosts in a domain. But, be aware that you cannot use a wildcard for the subdomains of a domain.

Say you want a wildcard for magic.monkey.com. Well when you generate your CSR make sure that when you are prompted for the "CommonName" you put *.magic.monkey.com. Then you can use the certificate for adam.magic.monkey.com, eric.magic.monkey.com and russ.magic.monkey.com. Then, let us say you want to use it for crazy.ivan.magic.monkey.com. That will not work. Why? Becuase your wildcard is for the magic.monkey.com subdomain of monkey.com and not for the ivan.magic.monkey.com subdomain. Just be aware of that when you think about using wildcard certificates.

When you are ready to install your certificate just download it from your registrar and save it as magic.monkey.com.crt (not as *.magic.monkey.com.crt - it should work but the * can be unpleasant to deal with) then reference it like you would any other certificate in your Apache configuration file. The cool thing is it will work for tons of "ServerName" values.
Tip: Filter by directory path e.g. /media app.js to search for public/media/app.js.
Tip: Use camelCasing e.g. ProjME to search for ProjectModifiedEvent.java.
Tip: Filter by extension type e.g. /repo .js to search for all .js files in the /repo directory.
Tip: Separate your search with spaces e.g. /ssh pom.xml to search for src/ssh/pom.xml.
Tip: Use ↑ and ↓ arrow keys to navigate and return to view the file.
Tip: You can also navigate files with Ctrl+j (next) and Ctrl+k (previous) and view the file with Ctrl+o.
Tip: You can also navigate files with Alt+j (next) and Alt+k (previous) and view the file with Alt+o.