On Wed, May 18, 2022 at 11:53 PM Frank Gingras <thu...@apache.org> wrote: > > Not sure if you saw the other answer on the other email: > > // If you can't use a SAN, then you need to configure all your vhosts as > IP:443, whereas one vhost uses a separate IP, and the remainder uses the > second IP.
That sounds wrong to me. Apache should pick a matching certificate for the hostname specified via SNI by the client, if any, or the first one configured as a fallback (assuming the vhost IP / * specification matches). Note that only vhosts with IP:port are considered, if any are specified and match the request. You should be able to use *:443 for all vhosts. Rainer --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
