The Importance Of Running A Wildcard SSL Certificate Test

One of the simplest mistakes that an IT administrator can make is to install an SSL certificate and forget to complete a test. This is often overlooked when someone not in the IT field is installing the certificate on their own. However, it is also a common mistake with the professionals as well.

If you are going to the effort to install secure sockets layer technology to protect your clients and customers, it is worth the extra effort to use our Comodo SSL analyzer. This produces a quick Wildcard SSL certificate test to provide you with full information on the installation and the particularly on the certificate.

With the Wildcard, the certificate analyzer will perform the check on the provided domain name, which will always include the (*) asterisk. This is different from the SSL certificate for a single domain name that will use the Fully Qualified Domain Name (FQDN). In other words, the Wildcard would look like * instead of which is the FQDN.

The (*) or the wildcard symbol works as a placeholder for all the subdomains use that specific format in labeling. It will not provide security for second-level subdomains. For example, if you had a subdomain for mail that was the Wildcard SSL of * would provide security. However, if you had a second-level subdomain of "bob", the page would not be secured by the * cert.

It would be possible to have wildcard SSL/TLS certificate to cover these second-level subdomains. In the example above it would look like * where the (*) would cover any second-level subdomains under mail.

Installation for any and all levels of a Wildcard SSL certificate should be tested. You don't have to go to all the sites, just use the Comodo Certificate Analyzer to find all the information needed to verify the installation was successful and the certificate is accepted by browsers and devices.

Information to Check

To complete the Wildcard SSL certificate test, you will simply need to type in the domain, URL or IP Address for any of the wildcard covered webpages. This will bring up a complete report, typically in just a minute or two.

This will provide you with a complete listing of the certificate. The first box in the Wildcard SSL certificate test will include and SAN or alternative names listed on the certificate. This typically includes both the www version of the site as well as the site domain name without the www.

There will be information on the valid dates of the certificate as well as the encryption for the key. This should be 2048-bit RSA as anything lower than that has to be replaced and should have been replaced in 2013 to 2014 at the latest, but there still may be a few older certificates around with weak keys. This will not be the case with any new Comodo products as all that we produce are the 2048-bit RSA key options.

Next, you will find the Issuer Brand. This is the same as the Certificate Authority. We want to let you now you can use our Wildcard SSL certificate test with any URL and website and this can be helpful if you aren't sure about any of the features or parameters of a current SSL certificate and just want to do a quick check.

The next two lines on the test provide confirmation that the cert will be trusted by Microsoft and Mozilla. This is a simple to read yes or no, yes means the certificate is providing the security and no means that there is an installation problem or other issue with the certificate.

Finally, you will find information on the server and the protocol versions. We will also highlight any potential website vulnerabilities including a TLS POODLE attack or a DROWN, CRIME or Heartbleed attack in this section and the next.

Finally, you will notice information on the different cipher suites enabled. This will list the key size, which will typically be 128 or 256, but there are some that may have 112 as well.

We encourage our clients and customers, or those considering our products, to take full advantage of our free Wildcard SSL certificate test. Remember we are here to answer any questions you may have on the results of the report for your site or about our SSL/TLS products.

To get in touch with us by phone call +1 888 266 6361. You can also send us an email or use our live chat systems through the website at

Related Articles
Back to TOP