Re: 2 urls - 2 certificates - 1 SA

mdella_ · ‎02-27-2013

Hello,

I have 2 URLs to access my MAG, which are:

vpn.test.com

net.test.com

I have 2 public certificates for these urls and both the urls are mapped to the same public ip in dns. I am using NAT in this public ip. I am already using one of the certificates for the interface and it is working fine. Can i install the second certificate on the same interface? Do I need to create a virtual port? Is there a way to do this without create another NAT to another ip of virtual port?

Thanks

zanyterp_ · ‎02-27-2013

You will need to have a second interface (virtual port) created for the secondary certificate.

Each interface can only have one certificate applied to it.

I don't think there is any way to avoid the second NAT to the second virtual port

mdella_ · ‎02-28-2013

If I use an wildcard certificate *.test.com, could i have two urls in the same IP in DNS?

vpn.test.com

net.test.com

zanyterp_ · ‎02-28-2013

Yes, a wildcard of *.test.com would work and allow the single certificate to be used for multiple sites. Another option, depending on what type of growth in name space you are looking at, is using the Subject Alternate Name field in the certificate and apply that to the one port.