> -----Original Message----- > From: [EMAIL PROTECTED] [mailto:owner-openssl- > [EMAIL PROTECTED] On Behalf Of Joseph Oreste Bruni > Sent: vrijdag 4 november 2005 23:32 > To: openssl-users@openssl.org > Subject: Re: Multiple domains in one certificate > > Yep. But CA's typically put them in both anyway. > > On the other hand, if every site appears within the same domain (e.g. > foo.domain.com, bar.domain.com, baz.domain.com), it might be better > to get a domain cert that contains "*.domain.com". > > -Joe Both domains are different since my internal net is managed by me alone (and it is neither permissible nor possible to run your own dns for the domain names assigned by the provider)...
> > > > On Nov 4, 2005, at 3:17 PM, Goetz Babin-Ebell wrote: > > > Joseph Oreste Bruni wrote: > >> You can have as many commonNames as you want. That goes for > >> subjectAltName fields too. I do that on an apache server (not > >> using TLS) that needs to host more than one SSL site. Every > >> browser I've used is okay with certs. that have multiple CN's. > > > > But he should use the subjectAltName extension. > > Using the CN is deprecated. How do I define the subjectAltName, since I've tried it already but failed... What configuration directives are needed?? > > > >> On Nov 4, 2005, at 6:27 AM, > >> [EMAIL PROTECTED] wrote: > >>> I know it isn't the correct way to do stuff, but since it's only > >>> test server > >>> I want to do the following: > >>> I have a server with 2 ethernet cards, one for internal net, one > >>> for the > >>> external. Both have different IP-addresses and different domain > >>> names > >>> (external has even some c-names). What I want is one certificate > >>> which > >>> contains all domains, c-names and ip addresses... > > > > Bye > > > > Goetz > > > > -- > > DMCA: The greed of the few outweighs the freedom of the many Thanks for the response so far and hope someone can help me with the last pieces, Mark ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
