cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
311
Views
9
Helpful
1
Replies

CSM-S SSL multi-domain certs

dhinshelwood
Level 1
Level 1

Has anyone implemented multi-domain SSL certs on the CSM-S?

i.e. 1 SSL cert contains test.com & test.uk

1 Reply 1

Gilles Dufour
Cisco Employee
Cisco Employee

you can have multiple certs but they need to be assigned to different vserver.

So, you need to be able to distinguish between the 2 at TCP/IP level.

Either by ip address or by tcp port.

ie: test.com will be on x.x.x.x:443

test.uk will be on x.x.x.x:444

or

test.com will be on x.x.x.x:443

test.uk will be on y.y.y.y:443

This is true for any loadbalancer.

Since you need to know which cert to use decrypt the traffic and only when the traffic is decrypted can you see the http header that contains the hostname.

Gilles.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: