I have certificate issued to *.iphone.apple.com. It has *.ipod.apple.com as a SAN.
Can this be used for gen5.touch.ipod.apple.com or should *.touch.ipod.apple.com be added to *.iphone.apple.com as a SAN?
certificatesslssl-certificatestorage-area-network
I have certificate issued to *.iphone.apple.com. It has *.ipod.apple.com as a SAN.
Can this be used for gen5.touch.ipod.apple.com or should *.touch.ipod.apple.com be added to *.iphone.apple.com as a SAN?
Best Answer
Wildcards only apply to a single DNS label. So
*.example.com
would only supportsub1.example.com
, but notsub2.sub1.example.com
. So for 2nd level sub-domains you'd need a wildcard at the 1st subdomain level (*.sub1.example.com
).