Ping a Specific Port

Question

kolypto

Asked: 2014-04-16 06:44:06 +0800 CST2014-04-16 06:44:06 +0800 CST 2014-04-16 06:44:06 +0800 CST

Managing server certificates for wildcard

772

I have a wildcard certificate for *.example.com (signed by GeoTrust) and am going to host lots of application instances on different servers, each on my subdomain.

I am not willing to copy my OpenSSL private key to every customer. How do I use my certificate to create sub-certificates for individual subdomains without sharing mine?

2 Answers

Voted

NickW · Answer 1 · 2014-04-16T06:48:10+08:00

Best Answer

NickW

2014-04-16T06:48:10+08:002014-04-16T06:48:10+08:00

With some providers of SSL certificates (Digicert as one) you can generate new private keys and CSRs to request certificates on each server. This allows you to maintain separate private keys (and also generate these certificates for subdomains using Subject Alternative Names.). This does increase the administrative burden, but decreases the risk of sharing a single private key.

5

MichelZ · Answer 2 · 2014-04-16T06:48:04+08:00

MichelZ

2014-04-16T06:48:04+08:002014-04-16T06:48:04+08:00

This is not possible. You either need self-signed certificates or you need individual certificates.

4

Managing server certificates for wildcard

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?