Do I need a dedicated IP address per sub domain for SSL?
I currently have a dedicated server with a domain name eg. domain.com which has its own dedicated IP address. I need to secure only one sub domain eg. secure.domain.com
Does this subdomain need its own dedicated IP address to get an SSL certificate? Also, am I correct in thinking that I only need a standard certificate not a wildcard?
If you only have one SSL subdomain, then you only need one IP address and you don't need a wildcard. You can run SSL for secure.domain.com on the same IP address as non-SSL for domain.com.
If you have more than one SSL domain, there are four ways to handle it:
- Multiple IP addresses
- Wildcard SSL certificate
- Server Name Indication
- Subject Alternative Name
They all have their own advantages and drawbacks, and you'd have to research them all to work out what's best for your application.
The certificate is associated with the name, not the IP address, so no, you don't need a dedicated IP address for your secure site.
If you only plan to have one secure site, a non-wildcard certificate should be sufficient.