Mobile app version of vmapp.org
Login or Join
Murray432

: Using SSL Certification in Multiple Locations I have some issues with respect to using SSL Certificates. I have a website hosted in UK and I also have an organisation in South Africa hosting

@Murray432

Posted in: #Https #Security

I have some issues with respect to using SSL Certificates. I have a website hosted in UK and I also have an organisation in South Africa hosting my company application online for web access.

The issue now comes as I want to implement SSL for both servers as it requires login from different places and different people.

Is it possible to purchase just ONE SSL certificate foe the company in the company name (www.companyname.com) and use it for both purposes?

Thanks

10.02% popularity Vote Up Vote Down


Login to follow query

More posts by @Murray432

2 Comments

Sorted by latest first Latest Oldest Best

 

@Deb1703797

Based on the information you have provided in the question and the response to my comment, you have a couple of different options or at least some additional things to think about.

First scenario: Your website and application are hosted on 2 different servers with the URLs of companyname.com and companyname.com/application. In order for this to work, you will need some type of reverse proxy to send traffic for .../application to the server in South Africa. If SSL is to be used, that SSL certificate will need to reside on your server in the UK on the companyname.com site. It gets a bit more complicated if you also want the traffic between your reverse proxy and the server in South Africa to be encrypted traffic. Unless you have the infrastructure to support it, a reverse proxy might not be the right choice for your situation.

Second scenario: Your website and application are on 2 different URLs (www.companyname.com and application.companyname.com). In this scenario there are a couple of different SSL certificates you could use. The first would be a wildcard certificate for *.companyname.com which would then cover any websites under that domain. The wildcard certificate would then be installed on the server in the UK as well as the server in South Africa and still work fine. There is another type of certificate called a SAN certificate that allows you to specify multiple domains in the certificate. For your situation you could have 'www.companyname.com' and 'application.companyname.com' explicitly specified in the certificate. That certificate would then be installed on both servers.

The drawback to a SAN certificate is that you are limited to the websites that you have specified in the certificate, but they cost a bit less. With a wildcard certificate you can specify any number of subdomains and still be able to use the same certificate, but these may cost a bit more.

The other option of course it to purchase a single domain certificate for companyname.com and one for application.companyname.com and install on their respective servers. Depending on the SSL provider that you use, this might be the least costly option, but then you have different certificates you would have to manage.

Hope that helps to give you some options.

10% popularity Vote Up Vote Down


 

@Ann8826881

SSL certificates are not tied to an individual server (check with the certificate provider but most can be installed on an unlimited number of servers). You just need to copy the private key and certificate to the new server.

10% popularity Vote Up Vote Down


Back to top | Use Dark Theme