Does it matter which servers the domain points to when issuing an SSL

Nadezhda · November 5, 2025, 8:53am

Good day,

Kindly ask you to advise does it matter which servers the domain points to when issuing an SSL?
The primary domain has been moved to a separate server. The third-level domain remains in its original location and requires SSL.

bruncsak · November 5, 2025, 10:50am

@Nadezhda, welcome to the community!

When validating the domain with HTTP-01 challenge type, the challenge validation must start on the server where the domain is pointing to. It is possible to redirect the challenge URL to different server, the validation process follows the redirect. With DNS-01 challenge type, it does not matter where the domain points, in fact, there is no even requirement for address record in the DNS.

Osiris · November 5, 2025, 10:57am

I think OP means they want a certificate for foo.bar.example.com, which has remained the same, but example.com (unrelated to the cert) has moved to a different server.

That said, OP isn't providing us with much info, so above is just my interpretation

Topic		Replies	Views
Move certificate to another server but dns points to old one Help	2	1104	January 19, 2017
Solution for SSL - One Domain Two Ips Help	4	1915	October 10, 2017
Certificate mismatch generate ssl for www or non-www first? Server	6	1345	January 2, 2019
Multiple subdomains on different servers Server	5	4056	March 16, 2017
Multiple backend servers renewal Server	8	3858	December 20, 2016

Does it matter which servers the domain points to when issuing an SSL

Related topics