Problems Related to Domains
Can I Associate a Chinese Domain with an SSL Certificate?
A Chinese domain name can only be associated with a certificate when it is encoded with Punycode.
Example: A Punycode-encoded Chinese domain name is xn--siq1ht8k.com.
When you apply for a certificate, associate xn--siq1ht8k.com with the certificate.
Does the Domain Name Need to Be Registered Before Being Associated with an SSL Certificate?
- During the certificate application, the domain name associated with the SSL certificate can be unlicensed. However, the domain name that is not licensed will be blocked. As a result, the domain name cannot be accessed. Therefore, you are advised to license the domain name immediately after the website is set up.
- An SSL certificate can be bound to a domain name that is registered by an individual (the website is owned by an individual and does not contain any information of enterprises and institutions) or enterprise (the website is owned by enterprise or company).
Does Huawei Cloud SCM Provide Wildcard-Domain Certificates?
Yes.
Huawei Cloud SCM provides single-domain, multi-domain, and wildcard-domain certificates.
You can buy wildcard certificates, or wildcard-domain certificates, on Huawei Cloud SCM.
What Are the Rules for a Wildcard Certificate to Match a Domain Name? Can a Wildcard Certificate Match Domain Names Across Domain Levels?
You can purchase wildcard certificates on SCM.
A wildcard domain is a domain name that contains only one * and starts with *..
For example, *.a.com is a correct wildcard domain name, but *.*.a.com is not.
To purchase a wildcard-domain certificate, you need to pay attention to the domain name matching rules. Only the subdomain names of the same level can be matched. Table 1 provides the examples.
Domain name |
Matched Domain Name |
Unmatched Domain Name |
|---|---|---|
*.huaweicloud.com |
test.huaweicloud.com, yun.huaweicloud.com, example.huaweicloud.com, and other domain names |
abc.test.huaweicloud.com, yun.test.huaweicloud.com, example.test.huaweicloud.com, and other domain names |
*.test.huaweicloud.com |
abc.test.huaweicloud.com, yun.test.huaweicloud.com, example.test.huaweicloud.com, and other domain names |
abc.huaweicloud.com, yun.huaweicloud.com, example.huaweicloud.com, and other domain names |
Which Domain Names Can Be Associated with A Single-Domain Certificate?
In SCM, options for Domain Type can be Single domain, Multiple domains, or Wildcard.
A single-domain certificate can be associated with only one common domain name, for example, example.com and test.example.com.
Note that example.com does not contain subdomain names such as test.example.com. If all level-2 and level-3 domain names need to be supported, purchase a wildcard-domain certificate.
Which Domain Names Can Be Protected with A Multi-Domain Certificate?
In SCM, options for Domain Type can be Single domain, Multiple domains, or Wildcard.
If you buy a multi-domain certificate, you can add multiple different domains, including multiple single domains. For example, you can use one multi-domain certificate to protect domains example.com, example.cn, and test.com.
You need to configure the domain quantity based on the number of domains you need to protect with a single multi-domain certificate.
The number of domain names ranges from 2 to 250. A maximum of 250 domain names can be protected with a certificate.
Which Domain Names Can Be Protected with A Wildcard-Domain Certificate?
In SCM, options for Domain Type can be Single domain, Multiple domains, or Wildcard.
A wildcard-domain certificate can protect only one wildcard domain name.
- A wildcard domain must start with an asterisk symbol and a dot (*.) and contain only one asterisk symbol (*), for example, *.huaweicloud.com and *.example.huaweicloud.com.
- Only the same-level domain matching is supported. For example, a certificate associated with *.huaweicloud.com can protect p1.huaweicloud.com but not p2.p1.huaweicloud.com. If you need to protect p2.p1.huaweicloud.com, purchase a wildcard-domain certificate associated with *.p1.huaweicloud.com. For details about more level matching rules, see Table 2.
To purchase a wildcard-domain certificate, you need to pay attention to the domain name matching rules. Only the subdomain names of the same level can be matched. Table 2 provides the examples.
Domain name |
Matched Domain Name |
Unmatched Domain Name |
|---|---|---|
*.huaweicloud.com |
test.huaweicloud.com, yun.huaweicloud.com, example.huaweicloud.com, and other domain names |
abc.test.huaweicloud.com, yun.test.huaweicloud.com, example.test.huaweicloud.com, and other domain names |
*.test.huaweicloud.com |
abc.test.huaweicloud.com, yun.test.huaweicloud.com, example.test.huaweicloud.com, and other domain names |
abc.huaweicloud.com, yun.huaweicloud.com, example.huaweicloud.com, and other domain names |
- For wildcard-domain certificates, only those associated with root domain names support the domain names. For example:
- A certificate associated with the wildcard domain *.huaweicloud.com (a root domain) protects huaweicloud.com and other domain names of the same level. No additional certificate needs to be purchased for this.
- A certificate associated with the wildcard domain *.p1.huaweicloud.com (not a root domain) will not protect p1.huaweicloud.com (a different level domain). It can only protect domain names of the same level. To protect p1.huaweicloud.com, you would need to purchase a new certificate.
- If the www subdomain is associated with a certificate, the certificate also protects the root domain. For example:
A certificate purchased for domain www.huaweicloud.com can also protect huaweicloud.com. There is no need to purchase another certificate.
- Once your digital certificate is issued, the associated domain cannot be changed.
About Required Domain Name Details FAQs
- How Do I Enter a Domain Name for a Certificate When Applying for an SSL Certificate?
- What Are the Differences Between a Single-Domain Name, Multi-Domain Name, and Wildcard-Domain Name in SCM?
- What Is the Relationship Between a Domain Name and an SSL Certificate?
- What Domains Can Wildcard-Domain Certificates Support?
- What Domain Name Should I Use to Apply for an SSL Certificate?
- Can I Change the Primary Domain Name Associated with a Certificate?
- Does the Relationship Between the Primary Domain Name and Additional Domain Name Have Any Impact on Domain Names?
- How Do I Make a CSR File?
- What Are the Differences Between the CSR Generated by the System and the CSR Made by Yourself?
- Domain-related Concepts
- Problems Related to Domains
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbotmore
