{"id":767,"date":"2018-04-06T08:58:04","date_gmt":"2018-04-06T15:58:04","guid":{"rendered":"https:\/\/www.ssls.com\/blog\/?p=767"},"modified":"2023-09-27T15:02:49","modified_gmt":"2023-09-27T22:02:49","slug":"everything-know-wildcard-ssl-certificates","status":"publish","type":"post","link":"https:\/\/www.ssls.com\/blog\/everything-know-wildcard-ssl-certificates\/","title":{"rendered":"Everything You Should Know About Wildcard SSL&nbsp;Certificates"},"content":{"rendered":"<p><a href=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/imac-2-1-1-1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-862 size-full\" src=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/imac-2-1-1-1.png\" alt=\"wildcard2\" width=\"640\" height=\"422\" srcset=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/imac-2-1-1-1.png 640w, https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/imac-2-1-1-1-300x197.png 300w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/a><\/p>\n<pre>Wildcard SSLs secure an unlimited amount of subdomains along with a domain name.This means that once you obtain the certificate, you are able to secure all one-level subdomains with the same certificate file.<\/pre>\n<p><!--more--><\/p>\n<p>The great feature of a wildcard certificate is that you do not need to reissue it every time you create a new subdomain and want to <a href=\"https:\/\/www.ssls.com\/blog\/understanding-how-ssl-encryption-works\/\">secure<\/a> it. With a wildcard certificate, you already have all the certificate files necessary to secure a new subdomain right away.<\/p>\n<p>Here are some examples of domains and subdomains that can be secured by a wildcard certificate:<\/p>\n<p><center><strong>example.com<\/strong><\/center><center><strong>sub.example.com<\/strong><\/center><center><strong>ssl.example.com<\/strong><\/center><center><strong>*.example.com<\/strong><\/center><\/p>\n<p><em><br \/>\n<a href=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/123213213123.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-788\" src=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/123213213123.png\" alt=\"123213213123\" width=\"110\" height=\"110\" \/><\/a><\/em><\/p>\n<p><em>Please note that wildcard coverage is performed only for one-level subdomains. So if the certificate is issued for *.example.com, second- or third-level subdomains (*.*.example.com) will not be secured.<\/em><\/p>\n<p>It is also worth noting that you only need to validate the main domain name to have the certificate issued. Validation of each subdomain is not necessary.<\/p>\n<p><a href=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/2222222.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-778\" src=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/2222222.png\" alt=\"2222222\" width=\"110\" height=\"110\" srcset=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/2222222.png 256w, https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/2222222-150x150.png 150w\" sizes=\"auto, (max-width: 110px) 100vw, 110px\" \/><\/a><\/p>\n<p>A <b>Wildcard<\/b> certificate has the capability to protect users from <a href=\"https:\/\/en.wikipedia.org\/wiki\/Man-in-the-middle_attack\" target=\"_blank\" rel=\"noopener noreferrer\">Man-in-the-middle attack<\/a>. This is where the attacker secretly relays (and can possibly alter) the communication between two parties who believe they\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0are directly communicating with each other.<\/p>\n<p>There are two validation levels of <a href=\"https:\/\/www.ssls.com\/domain-type\/wildcard-ssl-certificates\">Wildcard certificates<\/a>:<\/p>\n<ul>\n<li><b>Domain Validation<\/b> certificates (<a href=\"https:\/\/www.ssls.com\/ssl-certificates\/comodo-positivessl-wildcard\" target=\"_blank\" rel=\"noopener noreferrer\"><i>PositiveSSL Wildcard<\/i><\/a><i>, <\/i><a href=\"https:\/\/www.ssls.com\/ssl-certificates\/comodo-essentialssl-wildcard\" target=\"_blank\" rel=\"noopener noreferrer\"><i>EssentialSSL Wildcard<\/i><\/a>)<\/li>\n<\/ul>\n<p>These certificates can be issued within 15 minutes and require only domain ownership verification. In their browser, users will see a green padlock icon as an indicator of the certificate having been installed.<\/p>\n<ul>\n<li><b>Organization Validation<\/b> certificates (<a href=\"https:\/\/www.ssls.com\/ssl-certificates\/comodo-premiumssl-wildcard\" target=\"_blank\" rel=\"noopener noreferrer\"><i>PremiumSSL Wildcard<\/i><\/a>)<\/li>\n<\/ul>\n<p>OV certificates are issued within 2 business days since they require verification of your company from a trusted corporate database such as <a href=\"http:\/\/www.dnb.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Dun &amp; Bradstreet<\/a>, <a href=\"http:\/\/www.hoovers.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">\u00a0Hoovers<\/a>, <a href=\"https:\/\/www.bloomberg.com\" target=\"_blank\" rel=\"noopener noreferrer\">Bloomberg<\/a>, etc. In your browser, you will see the padlock and can <a href=\"https:\/\/developers.google.com\/web\/tools\/chrome-devtools\/security\" target=\"_blank\" rel=\"noopener noreferrer\">view company details<\/a> by going to Certificate Details in the browser.<\/p>\n<p><a href=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/333333.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignright wp-image-787\" src=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/333333-300x65.png\" alt=\"333333\" width=\"200\" height=\"44\" srcset=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/333333-300x65.png 300w, https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/333333.png 426w\" sizes=\"auto, (max-width: 200px) 100vw, 200px\" \/><\/a><\/p>\n<p>Unfortunately, there are no EV Wildcard certificates for public domains on the market due to<a href=\"https:\/\/cabforum.org\/wp-content\/uploads\/CA-Browser-Forum-EV-Guidelines-v1.6.8.pdf\" target=\"_blank\" rel=\"noopener noreferrer\"> security restrictions<\/a> [9.2.2, p. 10] following the requirements of the <a href=\"https:\/\/cabforum.org\/\" target=\"_blank\" rel=\"noopener noreferrer\">Certificate Authority\/Browser Forum<\/a>.<\/p>\n<p>Feel free to check out all the available Wildcard SSL certificates at SSLs.com.\u00a0<a href=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/44444.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-812\" src=\"https:\/\/www.ssls.com\/blog\/wp-content\/uploads\/2018\/04\/44444.png\" alt=\"44444\" width=\"130\" height=\"98\" \/><\/a><\/p>\n<p style=\"text-align: center;\"><a href=\"https:\/\/www.ssls.com\/ssl-certificates\/comodo-positivessl-wildcard\" target=\"_blank\" rel=\"noopener noreferrer\">PositiveSSL Wildcard<\/a><\/p>\n<p style=\"text-align: center;\"><a href=\"https:\/\/www.ssls.com\/ssl-certificates\/comodo-essentialssl-wildcard\" target=\"_blank\" rel=\"noopener noreferrer\">EssentialSSL Wildcard<\/a><\/p>\n<p style=\"text-align: center;\"><a href=\"https:\/\/www.ssls.com\/ssl-certificates\/comodo-premiumssl-wildcard\" target=\"_blank\" rel=\"noopener noreferrer\">PremiumSSL Wildcard<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Wildcard SSLs secure an unlimited amount of subdomains along with a domain name.This means that once you obtain the certificate, you are able to secure all one-level subdomains with the same certificate file.<\/p>\n","protected":false},"author":9,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16],"tags":[24],"class_list":["post-767","post","type-post","status-publish","format-standard","hentry","category-security","tag-security"],"_links":{"self":[{"href":"https:\/\/www.ssls.com\/blog\/wp-json\/wp\/v2\/posts\/767","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ssls.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ssls.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ssls.com\/blog\/wp-json\/wp\/v2\/users\/9"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ssls.com\/blog\/wp-json\/wp\/v2\/comments?post=767"}],"version-history":[{"count":91,"href":"https:\/\/www.ssls.com\/blog\/wp-json\/wp\/v2\/posts\/767\/revisions"}],"predecessor-version":[{"id":2724,"href":"https:\/\/www.ssls.com\/blog\/wp-json\/wp\/v2\/posts\/767\/revisions\/2724"}],"wp:attachment":[{"href":"https:\/\/www.ssls.com\/blog\/wp-json\/wp\/v2\/media?parent=767"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ssls.com\/blog\/wp-json\/wp\/v2\/categories?post=767"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ssls.com\/blog\/wp-json\/wp\/v2\/tags?post=767"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}