Does each subdomain need its own SSL certificate?

This depends purely on what type of certificate you have. You can have a standard single domain certificate. Aside from that, you can also get two following types of certificates.

Wild card certificate

Wild card certificate can be issued for domains that look like this *.example.com. This will ensure SSL encryption on all subdomains that end with .example.com. For example ws.example.com app.example.com and so on.

Multi-domain certificate

The second option is to use a multi-domain certificate that can be issued for a predefined list of domain names. This will ensure SSL encryption an all domains in the list using the Subject Alternative Name field of the certificate. For example, you can get a single certificate for ws.example.com and app.example.com.

If none of those options would work for you, you are left with the option of a separate certificate for each domain.

Got an article suggestion? Let us know

How to list all available CA SSL certificates on Ubuntu?

To list all available CA SSL certificates run the following lines of code:

Questions

Solved: Invalid command ‘SSLEngine

This frequently happens on fresh Apache servers. When Apache starts it reads through the configuration files. When it encounters `SSLEngine` directive, it considers it as unknown. This is caused by the fact that the server’s basic configuration does not have `mod_ssl` module installed or enabled.

Questions

Solved: Error 526 Invalid SSL Certificate

Error 526 indicates Cloudflare is unable to successfully validate the SSL certificate on the origin web server and the SSL setting in the Cloudflare SSL/TLS app is set to Full SSL (Strict) for the website.

Questions

How to verify SSL certificates on the command line?

To validate an SSL certificate you can use one of the following approaches, depending on the type of the certificate.

Questions

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.