Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ssl-certificate]

SSL certificates are used to encrypt and authenticate connections to network servers, most popularly for web servers but also email, file transfers, and other network connections.

SSL (Secure Sockets Layer) is a protocol that is used to encrypt and authenticate connections between clients and servers. Certificates are configured on the server so that the client can verify that the connection has not been hijacked, as well as verify that the connection is secure from end to end.

3291 questions
106
votes
5 answers

Should a wildcard SSL certificate secure both the root domain as well as the sub-domains?

I ask this question, because Comodo are telling me that a wildcard certificate for *.example.com will also secure the root domain example.com. So with a single certificate, both my.example.com and example.com are secured without warning from a…
josswinn
  • 1,175
37
votes
3 answers

Moving servers and IPs will change. Do SSL certificates need to be re-issued and installed?

We are moving servers to another facility with different block of IP addresses. Will we need to get new SSL certificates issued and installed once the move has taken place? If so, is there any way to get prepared for this before the server is moved…
dmr83457
  • 747
35
votes
2 answers

Details on exact expiration datetime of an SSL certificate?

Let's say we have an SSL certificate for a site. According to a web browser, the certificate expires tomorrow, Dec 10 2011. OK, but that glosses over time zones. When will it expire, exactly? 00:00 local time of the server (e.g. ET) 00:00 local…
Greg Hendershott
  • 816
27
votes
3 answers

Can I purchase a certificate for my domain that can sign other certificates for subdomains?

I have written a small program to run on a Windows computer that serves SSL/TLS web pages through port 443 to visiting web browsers. I want it to be easy for non-technical people to install and run this program. I have made it easy for them to…
fawltyserver
  • 281
17
votes
2 answers

Does issuing an SSL certificate at a new company immediately invalidate the certificates on our servers?

We have a wildcard certificate issued by GoDaddy coming up for renewal, and I would like to use a different company (which is yet to be chosen). The wildcard certificate is on use at a dozen sites across a few servers. There will be a gap of a few…
royappa
  • 297
  • 2
  • 9
15
votes
2 answers

Purchase new SSL Certificate before existing one expires

I am currently transferring a new customer onto my virtual private server from their old host. They have an existing SSL certificate but it expires next month so I don't think it is worth the hassle of getting the details from the old host. Would…
jx12345
  • 265
14
votes
7 answers

Free (or nearly free) Trusted SSL Certificate?

Is it possible to get a trusted signed ssl certificate for free? I could create a self signed one using iis7 for example but these normally require the user to accept them as compared to one from a trusted source. Therefore, is there a very…
asn187
  • 219
13
votes
2 answers

Multiple SSL certificates for a single domain on different servers

Our website is hosted by hosting company HA under domain D on a shared hosting plan. I would like to switch our hosting provider to company HB and I am willing to purchase a new SSL certificate for that purpose. I explicitly do not want to migrate…
Manu
  • 243
12
votes
2 answers

SSL certificate for website - no legal company name?

I am launching my own social website and need SSL for the user login section. To get the SSL they require the CSR key, which requires an organization name, and this name it is mentioned should be legally registered in your state. I don't have a…
Mike
  • 121
12
votes
2 answers

4562605504:error:0909006C:PEM routines:get_name:no start line:crypto/pem/pem_lib.c:745:Expecting: TRUSTED CERTIFICATE

The certificate of my website just expired, and I bought a new (free) one from AliCloud, downloaded one server.pem file and one server.key file. Then, I use openssl x509 -outform der -in server.pem -out server.crt to create the server.crt file. Then…
SoftTimur
  • 357
10
votes
2 answers

Determine if SSL certificate supports wildcard subdomains?

Hoping this is the right stack to ask in. If not, please direct me to the correct one. I am working with a client right now, and I need to know if their SSL certificate supports wildcard domains or not. The engineers on their side aren't aware of…
Geuis
  • 647
8
votes
5 answers

Multiple wildcard names in a certificate

I would like to have a single webserver with a single certificate that hosts the following…
Zizzencs
  • 947
  • 1
  • 10
  • 22
8
votes
1 answer

What's a SSL certificate bundle?

I've just generated a SSL certificate with go daddy and I've downloaded the files: mydomain.com.crt gd_bundle.crt I'm now going to combine them but it is not clear what's the 2nd certificate is. Thanks
aneuryzm
  • 1,754
6
votes
5 answers

Can I buy just one SSL cert for a subdomain?

I bought a plain ole SSL cert for mydomain.com. I also want to secure www.mydomain.com and mail.mydomain.com, which both map to the same server. Is this possible? I'm trying to avoid having to buy a wildcard SSL as it costs $200 when all I really…
Matias Nino
  • 1,392
6
votes
3 answers

Centos7 don't trust certificate issued by lets encrypt

I have apache nginx server running with https:// correctly configured with letsencrypt certificate. I can connect with firefox, chrome, ie. All of them reports connection as secure. However centos7 and ubuntu 14.04 reports certificate error: wget…
Pavel Niedoba
  • 243
1
2 3 4 5 6 7