Eckard Wille a écrit :
Cuesta Gilles schrieb:I thought that using wildcard or multi-cn certificates will work ?No.In this case, only one certificate is needeed for a range of VhostIf you only have one ip this won't make things better because virtual hosting is still not possible. Wildcard certs do not enable vHosting because the ssl handshake still takes place before the http host header can be evaluated. They were offered by CAs to make it easier for admins so they wouldn't have to fiddle around with dozens of certs and their validity management in a masshosting environment or for subdomains.
So what about this ? "*MULTIPLE CN (SAN) SERVER CERTIFICATES*This type of certificate (also called /Subject Alternative Name/ (SAN) ) enables to secure not only one website but a large number of sites (a list of sites) hosted on a shared infrastructure (server with multiple names, reverse proxy). Ideal to secure multiple brands of a corporation. One certificate per hardware is required."
http://www.tbs-certificats.com/index.html.en -- Gilles CUESTA - Logiciels Libres 69139920
signature.asc
Description: OpenPGP digital signature
