Wait! Don't Leave Without Securing Your Site
Get enterprise - grade SSL certificates at a fraction of retail prices.
Save 10% on your first order, by entering coupon code SAVE10 during checkout.
FAQs
All
Business Validation
Certificate Authorities
Changes
Code Signing
Configuration
CPAC
CSR Code
CSR Decoder
CSR Generation Tutorials
CSR Generator
DigiCert
Domain Validation
Extended Validation
General
Install SSL Certificates
Installation
IP Address
LEI
Multi Domain
Payments
Private Key
Renewal
S/MIME
Types
Updates
Wildcard
Does a multi-domain certificate work for Microsoft Exchange?
Yes. Exchange is the original UCC use case, and the same certificate covers Office 365 hybrid setups. The Common Name and autodiscover hostname go on as SANs.
Copy Link
Can I add or remove domains after the certificate is issued?
Yes. Most multi-domain certificates support free reissuance during the validity period, so SANs can be added or removed as needed.
Copy Link
What’s the difference between a multi-domain SSL and a SAN SSL certificate?
None. Both names describe the same product. “SAN” refers to the Subject Alternative Name field that holds the additional hostnames, so it’s the term you’ll see in CSR forms and server configuration. “Multi-domain SSL” is the buyer-facing label.
Copy Link
How many domains can one multi-domain SSL certificate secure?
Up to 250 SANs across SSL Dragon’s catalog. Most products include 3 domains by default (1 Common Name plus 2 SANs) and allow adding more at checkout or reissuance.
Copy Link
How do I generate a CSR for a multi-domain wildcard certificate?
Use our free CSR Generator tool or generate it on your server with OpenSSL. The Common Name (CN) must be a non-wildcard domain; list any wildcard entries (*.domain.com) in the SAN field instead, never in the CN.
Copy Link
What happens to my certificate when the 47-day lifespan rule takes full effect in 2029?
Existing certificates remain valid until their issued expiration date. New certificates issued after each phase deadline must comply with the new ceiling: 200 days now, 100 days from March 2027, 47 days from March 2029. At 47 days, automation becomes a practical requirement; see our ACME page for setup guidance.
Copy Link
Can I install one multi-domain wildcard certificate on multiple servers?
Yes. Every product on this page includes unlimited server licensing. Note that “unlimited” refers to the right to install, not to security best practice. Distributing the same private key across many servers increases blast radius if any one server is compromised. Use private key rotation policies appropriate to your deployment scale.
Copy Link
Why isn’t there an EV multi-domain wildcard option?
Covered in the validation section above. Short version: the CA/Browser Forum’s Baseline Requirements prohibit wildcard SAN entries on Extended Validation certificates. This is industry-wide, not an SSL Dragon limitation. Buyers who need EV identity on one specific hostname typically run two certificates side by side — an EV single-domain on the flagship hostname, and the multi-domain wildcard on the rest of the portfolio.
Copy Link
What’s the difference between a multi-domain wildcard and a UCC certificate?
Functionally none, in most cases. UCC (Unified Communications Certificate) is the older naming used in Microsoft Exchange and Communications Server contexts. A multi-domain wildcard works as a UCC and supports the same FQDN flexibility Exchange requires for its autodiscover, mail, and webmail hostnames.
Copy Link
Can I add or remove domains after the certificate is issued?
Yes, free and unlimited via reissue. The expiration date stays the same; reissuing does not extend validity. For DV, you only need to prove control of any newly added domains; for OV, organization validation can usually be reused within the certificate’s lifetime, so reissues complete faster after the first one.
Copy Link