Well I had my share of fun to figure out how to use a wildcard certificate for SharePoint.
The SSL’s were expiring which we had from VeriSign. We had a wildcard *.domain.com from digicerts.com.
*.domain.com means you can generate a certificate for any sub-domain with in it.
This works fine (for scsm.contoso.com i.e. subdomain.domain.com ) but if you’re generating a cert for second level sub domain i.e.
sp.portal.contoso.com (secondleveldomain.subdomain.domain.com )
For this you will need to generate something called as SAN ( Subject Alternative Name) by creating a duplicate cert and give a fully qualified name i.e. sp.portal.contoso.com . This step may change depending upon who is your provider.
We tried to Complete the Domain Certificate but it wasn’t able complete the cert request got some error. Here is how we were able to use the certificate eventually.
You need to install the certificate on the corresponding server via MMC (Certificates > Computer Account > Tasks > Import the Certificate which your provider has generated)
Now when the certificate is installed, you would need to Export the Certificate ( right click on the cert and click on Tasks > Export or Export ) and Complete a Domain Certificate in IIS via Server Certificates
Bind the same for HTTPS in IIS for the corresponding website and IISReset
Using this we were able to use wild card certificates for SharePoint environment.
You would need to check with your certificates provider if they support SAN (Subject Alternative Name) second level domain certificate. Digicerts does that and we’re happy to be using the same.
Note: This article is just to illustrate the wild card certificate does work for SharePoint subject to your certificates provider and how you do it.