Try OpenEdge Now
skip to main content
Core Business Services - Security and Auditing
Security : Public-Key Infrastructure (PKI) : Trust relationships and supporting mechanisms : Digital certificates and certificate store : Adding a wildcard character to a public key certificate
 
Adding a wildcard character to a public key certificate
You can add a wildcard " * " character in the subject name or common name fields in the public key certificate so that you can define a single common name for multiple domain names. For example, a certificate with "*.bedford.progress.com " common name can be used for user1.bedford.progress.com, user2.bedford.progress.com, or user3.bedford.progress.com.
By default, the client matches the hostname with a wildcard common name using the regEx matching technique. For example, *.progress.com is a valid wildcard common name for user.bedford.progress.com. If you want to validate the hostname as per the RFC 6125 guidelines, set the following environment variable to true:
*PSC_SSLSTRICT_HOSTNAME_VERIFY=<true> for Java and ABL clients.
*Progress.Open4GL.RunTimeProperties.StrictHostVerify=<true> for .Net clients.
Note: OpenEdge Explorer Management support only strict mode.