Welcome to the staging ground for new communities! Each proposal has a description in the "Descriptions" category and a body of questions and answers in "Incubator Q&A". You can ask questions (and get answers, we hope!) right away, and start new proposals.

Post History

66%

+2 −0

Incubator Q&A One cert with many domains, or one domain per cert?

I've noticed that it's possible to use DNS Name multiple times, so that a TLS certificate will cover multiple domains. Alternatively, you could generate a separate cert for each domain. What are ...

1 answer · posted 2mo ago by matthewsnyder‭ · last activity 2mo ago by Michael‭

Question Webmasters certificates

#1: Initial revision by

matthewsnyder‭ · 2024-03-28T21:34:08Z (about 2 months ago)

Copy Link

Raw

Markdown

One cert with many domains, or one domain per cert?

I've noticed that it's possible to use `DNS Name` multiple times, so that a TLS certificate will cover multiple domains.

Alternatively, you could generate a separate cert for each domain.

What are the implications of choosing one approach or the other, in terms of security and maintainability?

I'm sure actual certificate agencies restrict such things, and of course more certificates can be more expensive (unless you use a free CA like LetsEncrypt). In this case, I am asking about self-signed certificates for my own internal servers. So let's disregard purely administrative restrictions, and look at the practical consequences.

Webmasters certificates

Communities

Post History