Hi all for a pilot of Teams Direct routing we would like to test the TLS handshake with Office365 with our Audiocodes SBC where we want install a Let'sEncrypt "wildcard certificate".
Our needs are this:
CN must be
- SAN must be: sbc.icsc.it
- SAN must be: *.icsc.it
It's this possible with Let'sEncrypt ?
Thanks in advance
Welcome to the Let's Encrypt Community, Andrea!
In my experience, Let's Encrypt will not issue certificates containing redundant SANs.
Thanks Griffin, I've searched other similar requests and I've got the same. I've to go to other vendors.. Regards.
To prevent spam, you should edit your email address out of your original post.
Thanks for the advice ...I've lot of spam checks that help me!
Although I do believe you can get a cert with both "
*.icsc.it" from LE, I don't think you can specify which of the two would occupy the CN field.
And it might not be the way you wanted it.
If you can front-end the service, it might be possible to use the certs separately and simply proxy both to the wildcard back-end.
I just tried in the staging environment and got an error:
Error creating new order :: Domain name "[redacted]" is redundant with a wildcard domain in the same request. Remove one or the other from the certificate request
But I must say you've piqued my curiosity as to why having only the wildcard name in there wouldn't be sufficient.
Now I'm having second doubts...
The overlap might prevent it; As shown by your error message @petercooperjr
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.