Related

Join the DigitalOcean Community Community

Join 1M+ other developers and:

  • Get help and share knowledge in Q&A
  • Subscribe to topics of interest
  • Get courses & tools that help you grow as a developer or small business owner
 Join Now
Does DO have DDoS mitigation? Question Question
K8S ingress load balancer down Question Question

Question

Wildcard SSL certificate with load balancer

Posted May 28, 2020 1.3k views
SecurityNetworkingLoad Balancing

I have a load balancer that terminates SSL connections and routes to multiple front end servers.

I need my LB to terminate SSL with a wildcard domain name, at multiple levels, for instance:

https://app.example.com
https://foo.app.example.com
https://bar.app.example.com
...

I have acquired a wildcard certificate for *.app.example.com and installed it on the load balancer.

But I’m not getting any love from the LB. http://app.example.com is not validated by the cert.

It occurred to me that I might be confused about certs. Can *.app.example.com validate for app.example.com as well as foo.app.example.com?

If not, I have a problem, as the LB only lets me select one certificate, so I can’t solve this by adding an addition cert for the higher-level domain.

Is there a way to make this work with the DO LB? Or do I need to suck it up and set up an NGINX server?

Add a comment
jimShark
By:
jimShark

Related

Join the DigitalOcean Community Community

Join 1M+ other developers and:

  • Get help and share knowledge in Q&A
  • Subscribe to topics of interest
  • Get courses & tools that help you grow as a developer or small business owner
 Join Now
Does DO have DDoS mitigation? Question Question
K8S ingress load balancer down Question Question
Submit an answer

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Related

Looking for something else?

Ask a new question Search for more help