https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29863#M21825 <HTML><HEAD></HEAD><BODY><P>Just as an update... have received the certificates from the CA.</P><P></P><P>Managed to get them installed eventually after some tweaking to get the certificate chains to work. the certificates had the "alternative subject name" as the second FQDN of the other company vpn and all is working as expected.</P><P></P><P>vpn.comany-a.com and vpn.company-b.com resolve to the same IP and have no cert errors.</P><P></P><P>Thanks for the help</P><P></P><P>Marc</P></BODY></HTML> Fri, 08 Jul 2011 12:14:01 GMT migration 2011-07-08T12:14:01Z https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29859#M21821 <HTML><HEAD></HEAD><BODY><P>Hi All,</P><P></P><P>Hope this is an easy one to answer.</P><P>I have a customer that requires that the SSL-VPN have 2 fqdn names associated with it</P><P>i.e.</P><P><A class="jive-link-external-small" href="https://vpn.company-A.com">https://vpn.company-A.com</A><SPAN> = 196.1.1.1</SPAN></P><P><A class="jive-link-external-small" href="https://vpn.company-B.com">https://vpn.company-B.com</A><SPAN> = 196.1.1.1</SPAN></P><P></P><P>How would i over come this as I can only allocate a single certificate to the VPN portal ?</P><P></P><P>Cheers</P><P></P><P>Marc</P></BODY></HTML> Thu, 23 Jun 2011 13:45:34 GMT https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29859#M21821 migration 2011-06-23T13:45:34Z https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29860#M21822 <HTML><HEAD></HEAD><BODY><P>Hi Marc,</P><P></P><P>If they are two different companies, can they not have two portals and two IP's?&nbsp; Then of course different certs?</P><P></P><P>Thanks</P><P>James</P></BODY></HTML> Thu, 23 Jun 2011 14:41:25 GMT https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29860#M21822 James 2011-06-23T14:41:25Z https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29861#M21823 <HTML><HEAD></HEAD><BODY><P>They are the same company but with 2 domain names associated</P><P>With the current vpn solution they are using I think they have both certificates associated with the IP.</P><P>I will however confirm if this is the case of if they have 2 public addresses associated with their current VPN.</P><P></P><P>Thanks</P><P></P><P>Marc</P></BODY></HTML> Thu, 23 Jun 2011 16:07:02 GMT https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29861#M21823 migration 2011-06-23T16:07:02Z https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29862#M21824 <HTML><HEAD></HEAD><BODY><P>Marc,</P><P>Just to clarify, are you asking if Palo Alto supports multidomain certificates, like these -</P><P><A class="jive-link-external-small" href="http://www.comodo.com/business-security/digital-certificates/multi-domain-ssl.php">http://www.comodo.com/business-security/digital-certificates/multi-domain-ssl.php</A></P><P><A class="jive-link-external-small" href="http://help.godaddy.com/article/3908">http://help.godaddy.com/article/3908</A></P><P>Thanks</P><P>James</P></BODY></HTML> Thu, 23 Jun 2011 16:27:39 GMT https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29862#M21824 jcostello 2011-06-23T16:27:39Z https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29863#M21825 <HTML><HEAD></HEAD><BODY><P>Just as an update... have received the certificates from the CA.</P><P></P><P>Managed to get them installed eventually after some tweaking to get the certificate chains to work. the certificates had the "alternative subject name" as the second FQDN of the other company vpn and all is working as expected.</P><P></P><P>vpn.comany-a.com and vpn.company-b.com resolve to the same IP and have no cert errors.</P><P></P><P>Thanks for the help</P><P></P><P>Marc</P></BODY></HTML> Fri, 08 Jul 2011 12:14:01 GMT https://live.paloaltonetworks.com/t5/general-topics/multiple-dns-names-ssl-certificate/m-p/29863#M21825 migration 2011-07-08T12:14:01Z