Ooops, my fault! I've read and replied too fast (maybe because it's Monday? :-))
Of course this shouldn't be done with *two domain names* only with
two host names in the same domain... I suppose it won't work in
actual browsers but if it does I let you all know...
Sorry
Jan
Hassan Schroeder schrieb:
On Feb 11, 2008 5:00 AM, Jan Mönnich [EMAIL PROTECTED] wrote:
You can get one certificate with both domain names in the Subject
Alternative Name of the Certificate. All modern browsers can handle that
and you can use just one Certificate for both domains. That's the
workaround we are recommending to all of our customers.
Have you actually seen this deployed?
I ask because I've only seen Subject Alternative Name used as e.g.
foo.example.com, bar.example.com -- never two *domain* names.
If that really works, it'd be good to know :-)
--
Dipl.-Inf. (FH) Jan Mönnich, PKI Team
Phone: +49 40 808077-632, Fax: +49 40 808077-556, [EMAIL PROTECTED]
DFN-CERT Services GmbH, https://www.dfn-cert.de, Phone +49 40 808077-555
Sitz / Register: Hamburg, AG Hamburg, HRB 88805, Ust-IdNr.: DE 232129737
Sachsenstraße 5, 20097 Hamburg/Germany, CEO: Dr. Klaus-Peter Kossakowski
15 Jahre DFN-CERT + 15. DFN-Workshop Sicherheit in vernetzten Systemen
am 13./14. Februar 2008 im CCH Hamburg - https://www.dfn-cert.de/ws2008/
smime.p7s
Description: S/MIME Cryptographic Signature