• The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Feature-Request: "SubjectAlternativeNames" in CSR (X509 V3)

C

cyberjunk

New Pleskian
Where:
Plesk UI -> "Add SSL Certificate"

What:
It is possible to provide "alternative" names in certificates and their CSRs (additional to the main FQDN which is read from the "Domain name" in the plesk UI).

It's NOT supported by all CA/any cheap certificate.

It's well described here:
http://apetec.com/support/GenerateSAN-CSR.htm

I would like the UI being improved to allow entering subect alternative values which then will be included in the CSR or selfsigned certificate.

Benefits:
(a) This could be useful for professional users with expansive wildcard certificates (*.company.com). It's common to integrate the rootdomain (company.com) as an alternative name in such. Otherwise using a *.company.com certificate on company.com usually gives issues.
(b) This can improve the quality of self-signed certificates. Of course they will still warn the users about being self-signed, but the additional warning about being not correct for the destination they entered (e.g. they opened company.com instead of www.company.com) would disappear.

PS: cPanel seems to support it ;-)
 
Last edited:
You must log in or register to reply here.

Similar threads

I
Unable to disable SSL v2 and v3 in Postfix & Courier
Replies
15
Views
17K
iainh
I
C
Plesk Feature Requests
3 4 5
Replies
88
Views
47K
aaabyss
A
Back
Top