httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mark Watts <>
Subject Re: [users@httpd] SSL certificate and multiple names
Date Tue, 10 Aug 2010 08:11:37 GMT
Hash: SHA1

On 06/08/10 18:22, Hélène Montarou wrote:
> Hi,
> I have installed httpd-2.2.3 and I would like to generate a certificate.
> The machine on which it is installed has an internal name
> ( and I would like to use another name for external
> purpposes (
> I would like to generate a certificate for the external name
> (
> I was wondering where I could configure the name in Linux config file as
> well as in the httpd config files to make it work.
> I haven't seen a naming parameter in httpd.config.
> Would you give me some direction?
> Thank you,
> Hélène

Conventional SSL certificates are tied to a specific "Common Name".
In Apache terms, this is the same as the hostname you put in the browser
in order to connect to a given VirtualHost.
EG: ""

If you want two different hostnames, you generally need two different
certificates. Similarly, you will need a unique IP:port combination for
each Virtual Host, since the ServerName variable isn't seen by Apache
until after the SSL handshake.

There are exceptions to this: Wildcard certificates (for
"*") and "SNI" are two.


- -- 
Mark Watts BSc RHCE MBCS
Senior Systems Engineer, IPR Secure Managed Hosting
QinetiQ - Delivering customer-focused solutions
GPG Key:
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: Using GnuPG with Fedora -


The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message