Determine if SSL certificate supports wildcard subdomains?

ssl-certificate

Solution 1:

the ssl certificate is tied into a domain name - so simply inspect the certificate and if the domain listed is *.domain.com then it is a wildcard - if the domain is domain.com then it is specific to that domain.

Solution 2:

This can be done by checking for the common name in the SSL's subject. You can use the bash command openssl on *NIX clients.

For instance, google.com and www.google.com use two different SSLs. The first is a wildcard, the second is domain specific.

$ echo | openssl s_client -connect google.com:443 2>/dev/null | openssl x509 -noout -subject | grep -o "CN=.*" | cut -c 4-
*.google.com
$ echo | openssl s_client -connect www.google.com:443 2>/dev/null | openssl x509 -noout -subject | grep -o "CN=.*" | cut -c 4-
www.google.com

Related

SSH tunnel doesn't work
Starfield Wildcard SSL Certificate Not Trusted in All Browsers
Difference between reboot -n and echo b > /proc/sysrq-trigger?
scsi and ata entries for same hard drive under /dev/disk/by-id
Best practice for decommissioning a Domain Controller that is also a DNS server?
Windows "iowait" CPU utilization reporting
Rsyslog stops sending data to remote server after log rotation
Adding a Subdomain DNS Record in Windows Server
salt stack: use state jinja variables in template
How do i get back my old user account after upgrading to OS X Yosemite 10.10.2?
Partition showing as 'FFFFFFFF-FFFF-FFFF-FFFF-FFFFFFFF'; attempted to fix it but made it worse
Decrease size of display used in Macbook Pro [duplicate]