> I would like to create a individual space for all my customers, using > their own domain name. > > For example > > debian.org -> debian.org.example.com > linux.org -> linux.org.example.com > uk.debian.org -> uk.debian.org.example.com > > I tried to create a wildcard certificate for example.com, but it only > works for foo.example.com > not for foo.bar.example.com
What does "works" mean in this context? > That way, I can host the service on separate server, totally independent. > The only one that know them all is the DNS, that is the only one to > have a backup. > > Any idea ? It is not clear what you are talking about. What are these certificates for? Web? Email? What client software are you attempting to use? If you are trying to get existing software to work with your special certificate scheme, you are attempting to impossible. You will have to use, at a minimum, your own client software. Programs like IE and Firefox are unlikely to properly handle unusual cases like this. At least, last time I checked, IE broke wildcard certificates so badly that I would consider it irresponsible for a CA to issue such certificates. (And there are still clients out that *IGNORE* the restriction even though it's marked critical!) Rather than wildcard certificates, just set up a web site to issue whatever specific certificates are needed. DS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
