Wildcard certificate and multiple Subject Alternative Name certificate together


#1

Hi,
I have a wildcard cert working together with a certificate for a single hostname, but when I replace this last certificate with one that has several Subject Alternative Names I have problems when accessing the website, it is only serving the wildcard but not the multi SAN. Is there any incompatibility with this?

line is:

bind 10.11.6.60:443 ssl crt /etc/haproxy/wildcard.pem crt /etc/haproxy/multi-haproxy.bundle.pem

Thanks.


#2

Is the client supplying SNI? Are the SAN’s part of the wildcard?

Can you make some specific examples and provide the output of haproxy -vv?


#3

Hi,
thanks for the quick reply, it just worked, I guess after firefox cache has expired. So now I have the wildcard certificate and another one with multiple SAN’s. Two certificates for a single IP:443