Using Wildcard certificate for multihosts*.thedomain.tld subdomains while having other subdomains

letmesetthisup · August 24, 2023, 6:40pm

1. The problem I’m having:

I want to add a wildcard for a specific hostname like multihosts*.thedomain.tld
for this I need to use the wildcard cert.
for everyhtign else I want to still use specific certs as I currently do.

so my config works if I remove:
multihosts*.thedomain.tld - part.

I need to use around 300 multihosts.thedomain.tld
so I really want to use wildcard there…

I have the following config:
# DNS API - SSL
{
    acme_dns cloudflare MYTOKEN..
}

# Hosts

multihosts*.thedomain.tld{
    reverse_proxy https://10.255.252.3:7443 {
        transport http {
            tls_insecure_skip_verify
        }
    }
}

anothersubdomain.thedomain.tld{
    reverse_proxy https://10.255.255.7:443 {
        transport http {
            tls_insecure_skip_verify
        }
    }
}


asubdomainialsouse.thedomain.tld {
    reverse_proxy https://10.255.255.6:443 {
        transport http {
            tls_insecure_skip_verify
        }
    }
}

2. Error messages and/or full log output:

Error: adapting config using caddyfile: subject does not qualify for certificate: multihosts*.thedomain.tld'

3. Caddy version:

v2.6.4 built with acme_dns cloudflare module using xcaddy

francislavoie · August 25, 2023, 12:34am

I don’t understand what you mean by multihosts*. That doesn’t make sense.

Wildcards must have a single * as the left-most label.

Please completely fill out the help topic template as per the forum rules. Don’t omit any sections.