I have two SSL certificate one for *.sub.domain.com and one for *.domain.com.
I don't have issues with domain level wildcard certificate. Meaning https://www.domain.com & https://domain.com works fine with out any certificate errors.
But for the other one https://sub.domain.com gives certificate error(address miss match ) and https://www.sub.domain.com doesn't give any error.
Just another info both certificate are from the same provider.
Best Answer
Wildcard certificate issued for
*.domain.com
doesn't secure baredomain.com
by default.Run
openssl x509 -in certificate.crt -noout -text
on both certs to see their human-readable content. Look forX509v3 Subject Alternative Name
(SAN) field. If it is present, it specifies multiple DNS names, which can be secured by the cert.I suppose your
*.domain.com
cert has it, whereas*.sub.domain.com
doesn't, in that case ask for a new wildcard SAN cert.