So clients connect on irc.example.com which will direct them to either on of those servers via multiple A records.
Now what CN (common name) certificate should I use for each server irc.example.com for both? Or one.example.com and two.example.com?
How do SSL certificates work?
How do SSL certificates work?
So clients connect on irc.example.com which will direct them to either on of those servers via multiple A records.
Now what CN (common name) certificate should I use for each server irc.example.com for both? Or one.example.com and two.example.com?
-
Stealth
- Head of Support
- Posts: 2085
- Joined: Tue Jun 15, 2004 8:50 pm
- Location: Chino Hills, CA, US
- Contact:
Re: How do SSL certificates work?
The CN should be example.com, and the host name may be a couple things. If you want a different cert for each server, you would make the host name irc.example.com or one.example.com or two.example.com If you want to use the same cert for all your servers, you would use *.example.com for the hostname.
Also, if you are using a RR DNS, and have irc.example.com redirect to one.example.com and two.example.com, you will likely end up with certificate verification problems since the servername is sent AFTER the SSL connection is verified. So making your certs one.example.com and two.example.com will require users to specifically connect to those servers.
Also, if you are using a RR DNS, and have irc.example.com redirect to one.example.com and two.example.com, you will likely end up with certificate verification problems since the servername is sent AFTER the SSL connection is verified. So making your certs one.example.com and two.example.com will require users to specifically connect to those servers.