locked
UAG DirectAccess Wildcard Certificate RRS feed

  • Question

  • Hi all,
    Just having a small issue with UAG DirectAccess and a wildcard SSL certificate for the IP-HTTPS certificate.
    As the wildcard certificate has a * in the subject name it is not accepted by the UAG DirectAccess setup and returns the following error.

    "The selected certificate CN=*.example.com does not have a suitable subject name. Select a certificate with a valid FQDN as a subject name.

    Does this mean that we cannot use our wildcard certificate for UAG DirectAccess?
    Tuesday, November 17, 2009 7:44 PM

Answers

  • Resolved in RTM, selecting a wildcard cert will promt for input of the full name.

    • Proposed as answer by Max Braitmaiere Tuesday, November 24, 2009 6:04 AM
    • Marked as answer by jforgeson Thursday, January 21, 2010 10:36 PM
    Tuesday, November 24, 2009 6:04 AM

All replies

  • Hi,

    the error occurs if you are accessing a URL like a.b.example.com where the wildcard certificate subject name was set to *.example.com. A wildcard certificate allows you to substitue just one domain label but not any domain label. A your wildcard certificate *.example.com is valid for a.example.com but not for a.b.example.com
    • Marked as answer by Erez Benari Monday, November 23, 2009 6:11 PM
    • Unmarked as answer by jforgeson Sunday, February 7, 2010 10:33 PM
    Tuesday, November 17, 2009 8:51 PM
  • Resolved in RTM, selecting a wildcard cert will promt for input of the full name.

    • Proposed as answer by Max Braitmaiere Tuesday, November 24, 2009 6:04 AM
    • Marked as answer by jforgeson Thursday, January 21, 2010 10:36 PM
    Tuesday, November 24, 2009 6:04 AM