Results 1 to 8 of 8
  1. #1
    Join Date
    Nov 2011
    Location
    Mumbai
    Posts
    46

    Do AutoSSL accept wildcard entry?

    Do AutoSSL accept wildcard entry? LetsEncrypt in its blog has mentioned support for wildcard entry: https://letsencrypt.org/2017/07/06/w...-jan-2018.html

    Someone even commented on the cPanel forums mentioning support from version 84 of cPanel : https://features.cpanel.net/topic/le...#comment-55076

    But I am unable to see any option for wildcard anywhere in the cPanel options provided by Hawk Host. Any information regarding this? Or I am missing on something here?

  2. #2
    Join Date
    May 2002
    Location
    Moscow
    Posts
    1,602
    cPanel do not support wildcard Let's Encrypt certificates.
    TK Rustelekom LLC Dedicated server since 2002, RIPE NCC member, LIR

  3. #3
    Wildcard certificates are supported by cPanel - you can setup letsencrypt wild card ssl plugin referring the following url:

    https://letsencrypt-for-cpanel.com/d...ers/wildcards/

  4. #4
    Quote Originally Posted by Lenov View Post
    Wildcard certificates are supported by cPanel - you can setup letsencrypt wild card ssl plugin referring the following url:
    That is actually a separate plugin for Let's Encrypt which is a paid 3rd party addon.

    The cPanel Let's Encrypt provider will secure wildcard subdomains, but at this moment that's the limit.

  5. #5
    Join Date
    Nov 2011
    Location
    Mumbai
    Posts
    46
    Quote Originally Posted by cPanelLauren View Post
    That is actually a separate plugin for Let's Encrypt which is a paid 3rd party addon.

    The cPanel Let's Encrypt provider will secure wildcard subdomains, but at this moment that's the limit.
    The cPanel provided AutoSSL has its own issues with respect to wildcard entry. Please check this: https://www.webhostingtalk.com/showthread.php?t=1815511

  6. #6
    I saw that thread but from what I can see, the issue you're noting is with SAN's (Subject Alternate Names). To understand why that's occurring you need to understand that Let's Encrypt issues certificates 1 per VirtualHost and adds the rest of the domains using the SAN mechanism. This isn't a flaw it's the intended behavior of the product from Let's Encrypt.

  7. #7
    Join Date
    Dec 2007
    Location
    Indiana, USA
    Posts
    19,178
    Keep in mind that installing a wildcard certificate will not automatically cause every subdomain to have SSL. You will still need to apply that wildcard certificate to each subdomain you create.

    It seems counter-intuitive - but that’s how it works.
    Michael Denney - MDDHosting.com - Proudly hosting more than 37,800 websites since 2007.
    Ultra-Fast Cloud Shared and Pay-By-Use Reseller Hosting Powered by LiteSpeed!
    cPanel • Free SSL • 100% Uptime SLA • 24/7 Support
    Class-leading support that responds in minutes, not days.

  8. #8
    Join Date
    Nov 2011
    Location
    Mumbai
    Posts
    46
    Quote Originally Posted by cPanelLauren View Post
    I saw that thread but from what I can see, the issue you're noting is with SAN's (Subject Alternate Names). To understand why that's occurring you need to understand that Let's Encrypt issues certificates 1 per VirtualHost and adds the rest of the domains using the SAN mechanism. This isn't a flaw it's the intended behavior of the product from Let's Encrypt.
    Anyone would accept the way SAN is handled currently. But SAN listed domains should not be primary issued certificate if any user checks the site's certificate details by simply clicking on the green padlock of the visited site. The user should see the same URL in the field "Certificate issued to" when clicking on padlock symbol in browser from the visited site. In my case, it was different the way AutoSSL handles it, where the visiting site user clicks on padlock and sees altogether a new domain name which they might have never come across (my addon domains here) which makes the site little untrustworthy.

    This was not the case when I was using the LetsEncrypt plugin inside cPanel which handled it very efficiently. Each site can be issued with separate certificate and it also shows the same site url in "issued to" field of the padlock details making it more trustworthy. But you can anyways see the SAN urls inside the SAN section under the tab "details" and thats very much fine and accepted.

Similar Threads

  1. Do you accept orders from free email addresses like yahoo and hotmail?
    By poncho2000 in forum Running a Web Hosting Business
    Replies: 0
    Last Post: 07-09-2002, 03:29 PM
  2. Do you accept payment by cheque?
    By theNonsuch in forum Reseller Hosting
    Replies: 5
    Last Post: 01-16-2002, 11:42 PM
  3. Replies: 8
    Last Post: 07-18-2001, 06:16 PM
  4. How Do I setup Wildcard DNS on NT2000 IIS5
    By SteveJ in forum Hosting Security and Technology
    Replies: 1
    Last Post: 02-07-2001, 07:26 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •