Soldato
- Joined
- 18 Oct 2002
- Posts
- 4,898
I've discovered we've got more than 10 Thawte SSL certificates at work, all are for subdomains of our domain name.
Our various web applications are on different servers, mostly IIS but we've 2 or 3 Apache servers as well. We have some web servers in our DMZ, and some on our LAN published by a Squid reverse proxy.
I'm looking at getting a wildcard certificate for our domain, but I'm not sure how they work. It seems the certificate is issued for *.domain.co.uk, but the big-name providers say you can only use it to secure multiple subdomains on the same server, which is of no benefit to us as all ours are on separate servers.
Comodo and GoDaddy offer certificates that you can use on multiple servers. Are these treated in the same way as our separate certificates, eg. go on the server, generate a signing request, submit it, get the certificate and load it on the server - or do I generate one request and get a certificate back that I have to load on to multiple servers? How does this work with the private key?
Our various web applications are on different servers, mostly IIS but we've 2 or 3 Apache servers as well. We have some web servers in our DMZ, and some on our LAN published by a Squid reverse proxy.
I'm looking at getting a wildcard certificate for our domain, but I'm not sure how they work. It seems the certificate is issued for *.domain.co.uk, but the big-name providers say you can only use it to secure multiple subdomains on the same server, which is of no benefit to us as all ours are on separate servers.
Comodo and GoDaddy offer certificates that you can use on multiple servers. Are these treated in the same way as our separate certificates, eg. go on the server, generate a signing request, submit it, get the certificate and load it on the server - or do I generate one request and get a certificate back that I have to load on to multiple servers? How does this work with the private key?
