Follow

How To: Include CN as DNS SAN Automatically

Applies To:

Venafi Trust Protection Platform and up 15.1 and up

 

Summary:

With recent changes to Google's Chrome browser, it's necessary for Web Server certificates to have a the DNS SAN filled out all the time. This also conforms to RFC 2818 published in the year 2000 (Click Here for more info). This article displays which CA's automatically include the common name, as a DNS Subject Alternate Name. This means if a user doesn't fill out the SAN field the same as the Common Name, the CA will automatically fill it out for you.

 

More Information:

The following CA's have been tested to automatically include the CN as a DNS SAN. Please note that this list is not definite. CA's change; the best thing you can do is test this yourself to confirm your results. Also note, the Microsoft CA requires a checkbox to be set on the CA template in Venafi for this to work.

 

logo_comodo.png

 

 logo_digicert.png 

 

logo_entrust.png

 

 

logo_geotrust.png

 

logo_hydrantid.png

 

logo_microsoft.png

 

logo_symantec.png

 

logo_thawte.png

 

 

 

Was this article helpful?
2 out of 2 found this helpful
Have more questions? Submit a request

Comments

Powered by Zendesk