AnsweredAssumed Answered

Problem sharing wildcards?

Question asked by Thomas Zermeno on May 17, 2018
Latest reply on May 18, 2018 by Rob Moss

Can you further explain the potential problems with sharing a wildcard certificate among multiple servers?  The question stems from this quote in the Best Practices document:


"Also be aware that certificate sharing creates a bond that can be abused to transfer vulnerabilities from one web site or server to all other sites and servers that use the same certificate (even when the underlying private keys are different)."


What vulnerabilities are you referring to?  Are there ways to mitigate these vulnerabilities?  I thought that using different private keys for each server was a secure practice.