I know it's possible to have a wildcard as a hostname in the SAN of a certificate, like *.example.com. However, can you put *-test.example.com in the SAN? I found out you can't put that in DNS even though I couldn't find anything on that, so I'm wondering whether you could put it in the SAN.
Wildcard in (not as) a hostname in a certificate's SAN
411 Views Asked by dehulst At
1
There are 1 best solutions below
Related Questions in CERTIFICATE
- Create aws certification for domain
- How can I create a simple signed certificate for my Windows Forms .NET app in Visual Studio 2022
- Problem validating server certificate connecting to a Kafka cluster
- connecting to secure server from Java application without importing certificate to keystore
- Inside Windows 2016 : error message : "Caused by: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty"
- Visual Studio 2022 free certificate problem. "cannot import key file " how to fix
- How do I sign a powershell script with in-network server so that all clients can run script without changing execution policy?
- Mac Sonoma 14.4 Dotnet 8.0.203 SDK webapi https error
- CA certificate for .NET Maui
- Fiddler doesn't work because Chrome and Edge don't trust fiddler certificate
- openssl: try to load local ca store
- Authentication with SmartCard sending a SOAPUI request
- SSL/TLS certificate exchange/renewal needs private key of the old certificate in CSR
- Questions about p12 certificate and private key password
- ERROR: Could not install packages due to an OSError: Could not find a suitable TLS CA certificate bundle, invalid path: /path/to/cacert.pem
Related Questions in WILDCARD
- Download a website using wget command to include any subdomain
- Can '%VALUE%' be written so it gets current year automaticlly
- Synapse pipeline - extract year and country from a filename in a wildcard path
- Snakemake issue: wildcard problems when trying to force a rule to be ran after another rule
- AOB scan wildcrad generaor
- Wildcard SSL certificate with IIS webserver type Can it be used on Linux servers using Apache?
- Using extends/super in Wildcards Java/ Find the mistake
- wild card with bind9
- batch file - nested for loop with wildcards
- I need to understand JOLT wildcards and do the correct JOLT here
- Using Spring's @RequestMapping with multiple endpoints
- MS Excel find a value using wildcards and Vlookup
- Term-Based Subsequence Queries in Elasticsearch
- Why does an instance of Test<?> accept non-null objects in the constructor?
- How to Access WordPress Posts as Subdomains Instead of Subdirectories?
Related Questions in SAN
- Invoke-WebRequest : Cannot validate argument on parameter 'Uri' Brocade switch FOS REST API
- How to initialize a data storage system
- Set permission on Volume in Disk Management using PowerShell
- Can S3 be used for GitLab Advanced Search (Elastic Search) indexing?
- Unable to delete a folder made on a remote share (created using PowerShell)
- QLogic HBA network card init firmware fail
- Does Google CA accept IP addresses as SubjectAltNames and how can I go about this?
- Can PHP complete handshake if hostname and CN cert do not match?
- Wildcard in (not as) a hostname in a certificate's SAN
- How to properly obtain SAN using Perl library Crypt::OpenSSL::X509
- FC-SAN: How can I know there is new disk adding to the SAN?
- Not able to take a console on browser for HP StorageWorks 4/16 SAN Switch
- AuthenticateAsClient giving RemoteCertificateNameMismatch in ValidateServerCertificate when San not matched with CN
- How does NFS client know changes made on server by other client?
- Error while trying to connect to HP MSA 2050 SAN over SSH
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Thanks, Dallas, I somehow missed that Wikipedia page.
I think the killer for this is: "As of 2011, partial wildcard support is optional, and is explicitly disallowed in SubjectAltName headers that are required for multi-name certificates.", but also: "All major browsers have deliberately removed support for partial-wildcard certificates;[12][13] they will result in a "SSL_ERROR_BAD_CERT_DOMAIN" error."
So, it's a no-no.