NetTalk Central
NetTalk Web Server => Web Server - Ask For Help => Topic started by: bshields on October 23, 2017, 06:16:51 PM
-
Hi,
In NetTalk 10.08 there have been some changes to certificates. Anyone know how to do wildcard certificates?
They are normally named:
*.domain.com
So my key and crt files would be:
*.domain.com.key and *.domain.com.crt
But thats not going to work as a filename.
Anyone dealt with this in NT10?
Regards
Bill Shields
-
Hi Bill,
I have not tested this (so would appreciate some feedback) but I think;
just use
domain.com
in the domains list.
And save the cert as domain.com.crt and domain.com.key
(LE doesn't do wildcard certs yet - that's only coming in Jan - so LE won't be able to get a new wildcard cert - but if you put a real cert there you should be ok.)
Make a backup of the cert somewhere else for now as well (crt and key).
cheers
Bruce
-
Well don't i feel stupid.
It worked fine!
I did "try" to try this approach at the beginning but clearly before i got a handle on the changes.
Thanks :)
-
It's important for the wildcard cert to be the first domain in the domains list.
ie if you had *.bruce.com and www.bill.com then the wildcard must come first.
trying to do 2 wildcards though will fail (for the second one.)
ie *.bruce.com and *.bill.com won't work.
[aside: it works because if an incoming domain is not in the list, then the first cert is used]
cheers
Bruce
-
Hi Bruce,
Any way for NT to support multiple wildcard certificates?
Regards
Bill
I'm on NT10.25.
-
Hi Bill,
I've added it to the list for NT11.
No promises, but I'll see what can be done.
cheers
Bruce
-
Thanks Bruce
-
Bruce,
Did you ever do anything with this (ability to use more than one wildcard cert?)
Totally not urgent, but I'm looking at a couple of LAN projects where it would be nice to have a wildcard commercial cert and a wildcard domain (signed by our internal CA) cert. If not, I can just make multiple domain certs to use with the commercial wildcard.
Cheers,
Jane
-
nothing yet Jane on multiple wildcard certs. But definitely could be something to look at when your need becomes more pressing.