Ping a Specific Port

Question

Salman A

Asked: 2018-09-28 00:49:49 +0800 CST2018-09-28 00:49:49 +0800 CST 2018-09-28 00:49:49 +0800 CST

Add or do not add WWW hostnames to SAN certificate

772

My setup is as follows:

100+ websites
Each website has two host headers any.com and www.any.com
Requests for www.any.com are redirected to any.com without changing protocol
Some of these websites need SSL
Requests for http://sslonly.com are redirected to https://sslonly.com
I have a multiple domain (a.k.a. UCC/SAN) SSL certificate that allows up to 50 subject alternative names

My questions:

What is the best way to set up subject alternative names on the SSL certificate? Do I need to add both sslonly.com and www.sslonly.com or just sslonly.com?
What is the best way to set up the redirects?

I am using IIS 8.5

1 Answers

Voted

Crypt32 · Answer 1 · 2018-09-28T05:57:27+08:00

Crypt32

2018-09-28T05:57:27+08:002018-09-28T05:57:27+08:00

Yes, you should add all names that are used for redirects. That is, if you connect to https://example.com and this site redirects to https://www.example.com and it is the same web site, then your certificate must include both, example.com and www.example.com in the Subject Alternative Names extension. If any redirect host part is not listed in the certificate, redirect will fail and stop at this point with certificate error in browser.

2

Add or do not add WWW hostnames to SAN certificate

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?