Why Choose the Comodo PositiveSSL Wildcard?
If you run a website with multiple subdomains (www, mail, blog, shop, app, or any others), you have two options: buy a separate SSL certificate for each one or use a single wildcard certificate that covers them all. The Comodo PositiveSSL Wildcard takes the second approach. One certificate issued for *.yourdomain.com protects every first-level subdomain, including any you add in the future, without reissuance or extra cost.
As a Domain Validated certificate, it verifies domain ownership only. There’s no business identity check, no paperwork, and no waiting. That makes it a good fit for personal sites, blogs, portfolios, startups, and small businesses that need encryption across subdomains but don’t require the verified company details that come with Organization Validation or Extended Validation certificates. If your site handles sensitive transactions or you need your business name displayed in the certificate, an OV wildcard like the Comodo Premium Wildcard SSL is a better option.
Comodo PositiveSSL Wildcard Certificate Features
- Unlimited Subdomain Coverage. Secures your main domain and all its first-level subdomains (*.yourdomain.com) with one certificate. Add new subdomains at any time, and they’re protected automatically without additional cost or reissuance.
- Domain Validation in Minutes. Requires only proof of domain ownership through email, DNS CNAME, or HTTP hash verification. No business documents, no manual review. The certificate is typically issued within 5 minutes of successful domain validation.
- Unlimited Server Licenses. Install the same certificate on as many servers as you need at no extra cost. If your subdomains are hosted on different servers, you can deploy the certificate across all of them.
- $10,000 Warranty. Backed by a financial guarantee from Sectigo. In the unlikely event that a security breach occurs due to a flaw in the certificate itself, the warranty covers up to $10,000 in losses.
| Encryption | 256-bit with 2048-bit RSA signature key |
| Browser Compatibility | 99.9% of desktop and mobile browsers |
| Reissuances | Unlimited, free of charge |
| Site Seal | Static Comodo Secure / Sectigo trust seal |
| Refund Policy | 25-day money-back guarantee |
Validation and Issuance
The entire process, from purchase to a working certificate, can be completed in under an hour. After checkout, generate a Certificate Signing Request (CSR) on your web server with *.yourdomain.com as the Common Name (or use SSL Dragon’s CSR Generator), then complete domain validation through your preferred method. The certificate is issued within minutes. SSL Dragon provides installation guides for all major server platforms.
If you purchased a multi-year subscription (2 to 5 years), the certificate is issued for 1 year at a time per CA/Browser Forum industry standards. Before each annual expiration, you reissue the certificate for free. SSL Dragon sends email reminders 30 days in advance.
Comodo Positive SSL Wildcard vs. Other Comodo Wildcard Certificates
| Feature | Comodo PositiveSSL Wildcard | Comodo EssentialSSL Wildcard | Comodo Premium Wildcard SSL |
|---|---|---|---|
| Validation Level | DV | DV | OV |
| Price (from/year) | $56.33 | $68.66 | $120.00 |
| Encryption | 256-bit | 256-bit | 256-bit |
| Warranty | $10,000 | $10,000 | $250,000 |
| Site Seal | Static | Static | Dynamic |
| Issuance Time | Minutes | Minutes | 1–3 business days |
| Subdomains | Unlimited | Unlimited | Unlimited |
| Server Licenses | Unlimited | Unlimited | Unlimited |
| Best For | Personal sites, blogs, small businesses | Same use cases, alternative branding | Online stores, companies needing verified identity |
Prices reflect the lowest per-year rate with a multi-year subscription.
Wildcard SSL certificate prices vary widely depending on the validation level and Certificate Authority, but the Comodo PositiveSSL Wildcard is consistently one of the lowest-cost options available.
The Comodo PositiveSSL Wildcard and EssentialSSL Wildcard are technically identical products with the same encryption, validation process, and subdomain coverage. The difference comes down to branding and price within Sectigo’s portfolio, with Positive SSL Wildcard being the more affordable option.
If your website handles financial transactions or represents an established business, consider the Comodo Premium Wildcard SSL. It includes Organization Validation, which verifies your company’s identity and displays your business details in the certificate. The dynamic site seal and higher warranty also provide stronger trust signals for e-commerce.
Frequently Asked Questions
What is the difference between PositiveSSL Wildcard and EssentialSSL Wildcard?
Both certificates offer the same encryption, DV validation, unlimited subdomain coverage, and browser compatibility. The differences are price and product branding. PositiveSSL Wildcard costs less. They are technically identical products within the Sectigo portfolio. See our detailed comparison for more information.
Is Comodo the same as Sectigo?
Yes. Comodo CA rebranded to Sectigo in November 2018 following its acquisition by Francisco Partners. Certificates previously sold under the Comodo name are now issued by Sectigo, but the product names like PositiveSSL remain unchanged. You can read the full background in our article on Comodo CA’s rebrand to Sectigo.
How does a multi-year subscription work?
You pay upfront for 2 to 5 years at a discounted per-year rate. Per industry standards set by the CA/Browser Forum, the certificate is issued with a maximum validity of 1 year at a time. Before each annual expiration, you reissue the certificate for free. SSL Dragon sends reminders 30 days before each renewal is needed.
What validation methods are available for this certificate?
You can validate domain ownership via email (sent to admin@, administrator@, webmaster@, hostmaster@, or postmaster@ on your domain), DNS CNAME record, or HTTP hash file upload. HTTP/HTTPS file-based validation is not supported for wildcard domains.
What does the warranty cover?
The $10,000 warranty from Sectigo covers financial losses in the rare event that a breach results from a flaw in the certificate itself, such as fraudulent issuance. It does not cover breaches caused by server misconfiguration or other vulnerabilities unrelated to the certificate.
Does the Comodo PositiveSSL Wildcard cover second-level subdomains?
No. A certificate issued for *.yourdomain.com covers first-level subdomains only (e.g., mail.yourdomain.com). It does not cover second-level subdomains such as sub.mail.yourdomain.com. To secure a second level, you would need a separate wildcard certificate for that specific subdomain pattern.
Can I get an EV Wildcard certificate instead?
No. CA/Browser Forum guidelines do not allow Extended Validation (EV) certificates to be issued as wildcards. If you need EV-level trust for multiple subdomains, consider a multi-domain EV certificate where each subdomain is listed as a separate Subject Alternative Name (SAN).
