[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: StartTLS with a host alias

Robert Minsk writes:
>My cert on my LDAP server contains multiple commonName entries.
>> openssl x509 -noout -in s014-ldap-cert.pem -subject
> subject= /C=US/ST=California/O=FooBar/CN=s014.cgi.foobar.com/CN=ldap1.cgi.foobar.com/CN=s14.cgi.foobar.com

There is only supposed to be one CN in the certificate name.
However you can put multiple hostnames in the certificate's
Subject Alternative Name (aka Subject Alt Name) extension.