What kind of domain names can be protected by Sectigo s wildcard https certificate?

Wildcard certificates, also known as wildcard domain name certificates, are commonly referred to as wildcard domain names, which refer to things like * baidu .com, the wildcard certificate is strictly larger than the wildcard domain name, because it does not only contain all subdomains, but also contains the main domain name, but the wildcard certificate only contains the main domain name and the next level of subdomains, such as *

a . baidu ..com is not included in the next level subdomain if *

a. baidu .All subdomains of second-level domain names such as com need to be A

baidu .com configures a wildcard with such a number, so the understanding that a wildcard certificate contains subdomains at all levels is incorrect.

Solution: The wildcard certificate of SSLDUN can solve the problem of multiple subdomains.

A wildcard certificate can protect a domain name and all sub-domain names of that domain name, and there is no limit to the number of sub-domain names.

A wildcard certificate protects the generic domain name and all subdomains under the level you specified when you submitted your application. Simply add an asterisk (*) to the subdomain area to the left of the generic domain.

Single-domain SSL certificate: protects only one domain name, and these domain names are like the same; When you apply for a certificate for a domain name with a www prefix, it can protect the main domain name without www by default, for example, if you apply for a certificate, it will also be protected by default; This rule is not absent when applying for other subdomains.

Multi-domain SSL certificates: Compared with purchasing one certificate for each certificate, multi-domain certificates are more cost-effective and easier to manage. This certificate can protect multiple domain names at the same time, such as simultaneous protection, but the number of domain names protected by default is different for each brand multi-domain certificate.

Wildcard SSL Certificates: The full name in English is Wildcard SSL Certificates. Wildcard SSL certificates can protect all subdomains of a domain name at the same time, such as *

There is no limit to the number of subdomains**, and users can add their own subdomains** at any time. There may be dozens or hundreds of such subdomains, but it would be expensive to request a certificate for each of them. Wildcard SSL certificates save you time and money when obtaining and managing certificates for multiple servers.

The number of domain names protected varies.

Introduction to the Sectigo SSL Certificate:

A single-domain certificate can protect only one primary domain name or subdomain name.

A multi-domain certificate can protect multiple irregularly different domain names.

Wildcard certificates protect the primary domain name as well as any custom second-level domain names under it.

Solution: Gworg applies for an SSL certificate and determines the SSL certificate based on the number of domain names.

1) Single-domain SSL certificate: According to the literal meaning, it is an ordinary SSL certificate that only protects one domain name, which can be a top-level domain name or a second-level domain name.

2) Multi-domain SSL certificate: It is also the same as the literal meaning, that is, it can protect multiple domain names at the same time, whether it is the main domain name or a sub-domain name, it can generally protect 2 250 domain names, when you have a new domain name to protect, you can add it at any time, if you exceed the number of protection, you need to pay a certain amount of additional fees, but it is much more cost-effective than re-applying for an SSL certificate, and it also saves the time for re-review.

3) Wildcard SSL certificate: It is able to protect a domain name and all the subordinate domain names of the domain name, with a scope limit, but no quantitative limit, suitable for users with a large number of second-level domain names.

The sectigo certificate focuses on the cost-effectiveness of the certificate and is more popular with small and medium-sized enterprises. Currently, it ranks second in the SSL certificate market and is a popular SSL certificate brand. The Sectigo certificate is characterized by its high cost performance, which is the main reason why it ranks second in terms of market share.

However, sectigo certificates are generally only available to small and medium-sized businesses.

There are two types of Sectigo's multi-domain SSL certificates: one is Sectigo multi-domain DV SSL, which only verifies domain ownership; The other is the Sectigo multi-domain EV SSL certificate, which requires verification of domain ownership and business**, which can provide your visitors with verified residential address information in the certificate details.

It has three types of multi-domain certificates: DV, OV, and EV.

Explanation reason: Multi-domain name certificates can be divided into: wildcard multi-domain name certificates, and ordinary multi-domain name certificates.

Wildcard multi-domain name certificates can be issued only by OV and DV certificates, and can protect wildcard domain name resolution for multiple domain names at the same time.

Multi-domain certificates can support DV, OV, and EV enterprise certificate authentication. Among them, the OV type of multi-domain name certificate will display the real name information inside the certificate, and the EV will display the enterprise name in the browser.

Solution: Get a certificate at GWORG.

Some. The StipGo multi-domain SSL certificate supports three verification methods: DV, OV, and EV. You can go to Anxin SSL certificate application, which is cheap, and provides one-stop application and installation services.

Differences between Sectigo's single-domain certificates, multi-domain certificates, and wildcard certificates:

A single-domain certificate can only protect one domain name;

A multi-domain certificate can protect 2-250 different domain names, either a primary domain or a subdomain;

Wildcard certificates can protect a domain name and all its subordinate domains without limiting the number of domains.

The number of domain names protected by certificates varies.

Specific certificate differences:

Single-domain name certificate: Only one primary domain name or one subdomain name is supported.

Multi-domain certificate: Multiple independent domain names are supported, and the certificate is in one SSL.

Wildcard certificate: supports wildcard domain name resolution for a primary domain name. It is equivalent to a primary domain name and multiple subdomains.

Solution: Determine the number of domain names and apply for gworg.

Yes, there are two types: multi-domain name certificates and wildcard multi-domain name certificates.

Explain the reason: multi-domain name certificate, can protect different domain names at the same time, the maximum number of domain names protected by Zheng Hall is 250, and the billing is based on the number of domain names.

Multi-domain wildcard certificate can protect multiple different domain names at the same time, and these domain subdomains have unlimited trust (function of pan-resolution) billing according to the number of domain names, the more branched the domain name, the more expensive it is.

Multidomain names and wildcard multidomain names have either DV or OV SSL certificates.

Solution: You can get a multi-domain SSL certificate at GWORG.

A wildcard domain name (wildcard) certificate means that a primary domain name and any second-level domain name under it will be trusted without restrictions. This type of certificate mainly solves the problem that there are many second-level domain names in the project, and they must be trusted at the same time. If the domain name adopts wildcard domain name resolution, then the wildcard domain name certificate must be used to completely protect the domain name wildcard (wildcard domain name) SSL certificate is currently the most powerful certificate, with unified management and unified trust, mainly for the same main domain name, its subdomain name randomly customized domain name trust, greatly saving costs.

Solution: The wildcard certificate can be consulted at SSLDUN.

Sectigo (formerly Comodo CA) is the CA company with the largest market share in the global SSL certificate market, and nearly 40% of SSL certificate users have chosen Sectigo. Due to its product safety, cost-effective, it is trusted and welcomed by users. Sectigo SSL certificates include OV SSL certificates, DV SSL certificates, EV SSL certificates, signing certificates, etc., which can perfectly provide various types of digital certificate security solutions for enterprises and enterprises.

The Sectigo wildcard SSL certificate can protect a domain name and all its sub-level domains, and is suitable for users with multiple second-level domain names.

Comodo SSL certificates are divided into DV OV and EV SSL certificate types. The DV SSL certificate only needs to verify the ownership of the domain name and can be issued in a few minutes.

In addition to verifying the ownership of the domain name, the OV SSL certificate and EV SSL also need to verify the information of the applicant, the OV SSL certificate is also known as the enterprise SSL certificate, if the applicant has Dun & Bradstreet, only the ** verification of the enterprise can be issued, the EV SSL certificate is also known as the enterprise enhanced SSL certificate, in addition to verifying the same information as the OV SSL certificate, it is also necessary to verify the business license, print the contract and seal and sign.

Solution: ssldun to view the contents of the sectigo certificate in detail.

Once the domain name is decided, apply for a certificate.

sectigo application steps:

Go to GWORG and select the Sectigo type, for example: DV or OV, EV, etc.

According to the GWORG authentication requirements, go to the DNS provider of the domain name to add a resolution.

After a few minutes, the SSL certificate is obtained and configured to the server according to the documentation.

Solution: Gworg quickly apply for a Sectigo certificate.

Steps to apply for a sectigo https certificate:

1. Generate a CSR for the certificate request file

The first step for users to apply for an HTTPS certificate is to generate a CSR certificate request file, and the system will generate two keys, one is the public key is the CSR file, and the other is the private key, which is stored on the server. To generate a CSR file, the webmaster can refer to the documentation of the web server, generally apache, etc., use the openssl command line to generate key+csr 2 files, tomcat, jboss, resin, etc. use keytool to generate jks and csr files, and iis creates a pending request and a csr file through the wizard.

2. Submit the CSR to the CA organization (Sectigo) for certification.

There are generally 2 ways to certify CA institutions:

Domain name authentication, generally through the administrator's email authentication method, this way of authentication is fast, but the issued certificate does not have the name of the enterprise, only the ** domain name is displayed, which is what we often call the domain name https certificate. The popular free HTTPS certificate is also a domain name HTTPS certificate.

For enterprise document certification, the business license of the enterprise needs to be provided. It generally takes 1-5 working days to apply for CA certification for a foreign https certificate.

The certificate of the above two ways is called EV SSL certificate, and the EV SSL certificate can make the browser address bar turn green, so the certification is also the most stringent. EV SSL certificates are mostly used in fields with high requirements for information security protection, such as finance, e-commerce, and **.

3. Obtain the HTTPS certificate and install it.

After receiving the HTTPS certificate issued by the CA, deploy the HTTPS certificate to the server, and copy the key+cer file directly to the file in general, and then modify the file. For example, Tomcat needs to import the certificate CER file issued by the CA into the JKS file, copy it to the server, and then modify it. IIS needs to handle pending requests to import the CER file.