Unified Communications Certificates (UCC)

Preface

I am writing this post, since one of our admin suggested to purchase wild card SSL certificate when a customer reported issues with SSL installation on www.domain.com when he actually purchased domain.com ‘s SSL certificate. And the issue was escalated when the admin couldn’t get it working and customer of our client started threatening to cancel.

domain.com” is a subdomain of “.com“, so the wildcard that would work for it would be “*.com”. This is why a cert for *.domain.com works for “www.domain.com” but not, “www.sub.domain.com” or “domain.com”.

Solution which should have been suggested was UCC certificates and not Wildcard SSL certificates. From GoDaddy’s KnowledgeBase at http://help.godaddy.com/article/3908 here is the definition for UCC or Multi domain certificates.

Unified Communications Certificates (UCC) are SSL Certificates that secure multiple domains and multiple hostnames within a domain. They allow you to secure up to 100 domain names in a single certificate and can consolidate all your secure domains into one certificate.

I believe UCC works based on subjectAltName directive of openSSL, which you can read more about at http://www.openssl.org/docs/apps/x509v3_config.html#Subject_Alternative_Name_

Upto 5 domains, it will cost $90 and with GoDaddy’s coupon codes you may be able to get it with 10 to 20% discounts :-) We are no way affiliated to GoDaddy or NoDaddy. But not sure of other providers who gives UCCs at lower rate. If you are aware of one, please feel free to comment!

However we had to make it work for the customer and we did it. Since it was a cPanel server having EasyApache 3, we had to do custom modification for the virtualhosts inorder to make sure that it worked even after the changes are made. How to do that will be in one of the next posts, soon.

Post to Twitter Tweet This Post

Comment Form

About this blog

This blog, acts as a knowledge repository for the world and is unofficial! Anything we find interesting in the cyber world will go here. Most cases, this blog will reflect the happiness of our staff in reaching successful solution to an issue (s)he worked on. A reference for other fellow SAGEs who come across similar issues later