Pages

Tuesday, 12 March 2013

Using Wildcard Certificate for SharePoint 2010 or 2013



Well I had my share of fun to figure out how to use a wildcard certificate for SharePoint. 

The SSL’s were expiring which we had from VeriSign. We had  a wildcard *.domain.com from digicerts.com.
*.domain.com means you can generate a certificate for any sub-domain with in it.

This works fine (for scsm.contoso.com i.e. subdomain.domain.com ) but if you’re generating a cert for second level sub domain i.e.

sp.portal.contoso.com (secondleveldomain.subdomain.domain.com )

For this you will need to generate something called as SAN ( Subject Alternative Name) by creating a duplicate cert and give a fully qualified name i.e. sp.portal.contoso.com . This step may change depending upon who is your provider.

We tried to Complete the Domain Certificate but it wasn’t able complete the cert request got some error. Here is how we were able to use the certificate eventually.

You need to install the certificate on the corresponding server via MMC (Certificates > Computer Account > Tasks > Import the Certificate which your provider has generated)

Now when the certificate is installed, you would need to Export the Certificate  ( right click  on the cert and click on Tasks > Export or Export ) and  Complete a Domain Certificate in IIS via Server Certificates

Bind the same for HTTPS in IIS for the corresponding website and IISReset

Using this we were able to use wild card certificates for SharePoint environment.

You would need to check with your certificates provider if they support SAN (Subject Alternative Name) second level domain certificate. Digicerts does that and we’re happy to be using the same.

Note: This article is just to illustrate the wild card certificate does work for SharePoint subject to your certificates provider and how you do it.

11 comments:

  1. Your style is unique in comparison to other people I
    have read stuff from. Thank you for posting when you have the opportunity, Guess I'll just bookmark this web site.


    Feel free to surf to my page http://losangelesseoranker.com

    ReplyDelete
  2. WOW just what I was sеarching foг. Ϲame heгe by searсhing foг merchant services rate

    ReplyDelete
  3. Way cool! Some extremely valid points! I appreciate you writing this article and the rest of the website is also very good.


    Feel free to surf to my homepage; air mattress single Reviews

    ReplyDelete
  4. Asking questions are genuinely nice thing if you are not understanding something
    totally, but this article presents nice understanding even.



    my blog waring juice extractor We900sa

    ReplyDelete
  5. Hi to every body, it's my first go to see of this web site; this blog includes awesome and really fine materal in support oof visitors.


    Here is my homepage; gta san andreas pobierz

    ReplyDelete
  6. Wow, incredible weblog structure! How long have you been running a blog for?
    you made blogging look easy. The overall glance of your site is wonderful, let alone the content material!


    Feel free to visit my web site; wow gold

    ReplyDelete
  7. Great website with a lot of valuable material! I like it!


    Also visit my web-site - Divorce Lawyers vermont

    ReplyDelete
  8. A very nice Focus on why we need Cheap Wildcard SSL for our website. Now a days SSL certificate is as must as like SEO for protect our website online.

    ReplyDelete
  9. I would like to thank you for the efforts you have made in writing this blog. Very Informative post with Images. very interesting topic Best Star Naming Site

    ReplyDelete
  10. This comment has been removed by the author.

    ReplyDelete
  11. We provide the unique service to name a star. Buy a and good connections at the Star-naming Registry, we can process and ship your order within 24 hours starnamingservice.com is an international star naming company which provides gifts for all occassions.

    ReplyDelete