Contact us at |support@ssldragon.com

GoGetSSL Multi-Domain Wildcard SSL

Ideally for

Blog | Personal Site | Portfolio | Basic domain(s)

Domains Included

3 domains by default (1 in CSR + 2 SANs – add more SANs on the Checkout Page)

Additional Domain/SAN (USD)

$60

Max # of SANs

250

Brand

GoGetSSL

Validation

Domain Validation SSL

Green bar

No

Issue time

5 minutes

Server Licensing

Unlimited

Secures

Wildcard SSL (One Domain & All Sub-domains), Multiple Domain SSL (UCC/SAN), Multi-Domain Wildcard SSL

With / without "www"

No

Supported Browsers

99.3%

Documents

No documents required

Support for SAN (UC)

Yes

Secure Hash Algorithm

SHA-2

Key Encryption

2048 bit

Certificate Encryption

Up to 256-bit

Site Seal

Static

Refund

25 days

Warranty

$50,000

4 reviews for GoGetSSL Multi-Domain Wildcard SSL

  1. 5 out of 5

    Review by Valery

    The most flexible type of SSL certificate. Can secure anything you want.

    Posted on
  2. 5 out of 5

    Review by Igor

    Easy to add additional SANs at checkout. Struggled with this at my previous SSL vendor.

    Posted on
  3. 5 out of 5

    Review by Samuel

    Perfect to secure multiple domains AND subdomains. It’s exactly what my client’s setup required.

    Posted on
  4. 5 out of 5

    Review by Alisa

    There aren’t so many multi-domain wildcard certificates. Along with Comodo, this one is definitely a great option for more complex situations.

    Posted on

Add a review

Here is a list with the most common questions our customers have when buying a Multi-Domain Wildcard SSL Certificate with Domain Validation:

What are Multi-Year SSL Subscription Plans?

Starting with August 19th, 2020, the maximum duration of publicly-trusted SSL/TLS certificates issued by all Certificate Authorities (CAs) has been set to a maximum of 13 months.

However, in order to make your SSL Management process time-saving and cost-effective, the CAs and SSL Dragon are offering you the 2 Year and 3 Year SSL Subscription Plans.

This means that you can still buy a 2 or 3 year SSL Certificate and continue to benefit from multi-year discounting, while still remaining compliant with the CAB Forum SSL requirements.

How the Multi-Year SSL works?

Due to security reasons, your SSL certificate is initially issued with a maximum 1-year validity.

Prior to the expiration of your certificate, SSL Dragon, on behalf of the CA, we will issue a free replacement certificate for an additional 1-year certificate, according to your Subscription Plan.

You will need to validate & install the replacement SSL:

a. If you have a Domain Validation SSL Certificate, a short verification of your domain name will be required via Email, HTTP, or DNS in order to issue the 1-yr replacement SSL.

b. If you have a Business or Extended SSL Certificate – an additional Business Validation/Extended Validation recheck and callback process will also be required.

You can still reissue your certificate at any time and as many times as you like during your Multi-Year SSL Subscription Plan.

A Multi-Domain Wildcard SSL Certificate is specifically created to allow users to secure multiple domains and sub-domains using one single SSL Certificate.

NOTE #1: Any Multi-Domain Wildcard SSL Certificate should start with a non-Wildcard domain. This means that anytime you configure and request a Multi-Domain Wildcard SSL Certificate, you need to generate a CSR (Certificate Signing Request) for a single domain (such as: example.com), without any asterisk sign “*”. This is a requirement that comes from the Certificate Authorities. All the additional SANs (2nd, 3rd, 4th domains) can be Wildcard domains.

For example, a Multi-Domain Wildcard SSL Certificate that has 3 SAN (4 domains) by default, allows you to secure the following:

  1. One main domain and multiple Wildcard domains:
    1. example.com – included in the CSR (Certificate Signing Request)
    2. *.example.com
    3. *.mysite.com
    4. *.abcxyz.com
  2. One main domain and multiple Wildcard domains (with both, 1st level and 2nd level sub-domains):
    1. example.com – included in the CSR (Certificate Signing Request)
    2. *.example.com
    3. *.mob.example.com
    4. *.mysite.com
  3. Several domains and multiple Wildcard domains (with both, 1st level and 2nd level sub-domains):
    1. example.com – included in the CSR (Certificate Signing Request)
    2. *.example.com
    3. mysite.com
    4. *.mob.mysite.com

NOTE #2: If you add a SAN item like *.domain.com, you will protect its unlimited sub-domains but not the main domain. For example, if you want to secure secure two domains and all their sub-domains, you have to configure your SSL in the following format:

  1. domain.com – included in the CSR (Certificate Signing Request)
  2. *.domain.com
  3. mysite.com
  4. *.mysite.com

You can add sub-domains to your server and they will be covered by your Wildcard SSL Certificate automatically. You do not need to re-issue your Wildcard SSL Certificate each and every time when you add sub-domains to it. The newly added sub-domains will be automatically covered by your Wildcard SSL Certificate.

 

The Subject Alternative Name (SAN) SSL certificate, also called the Unified Communication Certificate (UCC) or the Multi-Domain SSL certificate was particularly developed to secure all your domains and subdomains by owning one single SSL certificate. This type of certificate ensures the security for both, your internal and external domains/subdomains and is fully compatible with your Microsoft Exchange products and Microsoft Office Communications Server.

UCC/SAN SSL certificates are not just easy to be managed but are the most cost-effective option. These certificates give you the opportunity to secure your main domain, for example, ssldragon.com, together with many other totally distinct domains, like ssldragon.net, ssldragonsslcertificates.com and its subdomains mail.ssldragon.com and account.ssldragon.com – all with 1 single certificate. Besides, unlike Wildcard SSL certificates, UCC/SAN certificates are available in all three validation methods: Domain Validation (DV), Business Validation (BV) and Extended Validation (EV).

You can find our full list of Multi Domain (UCC/SAN) SSL Certificates at this link.

multi-domainA Multi-Domain (SAN) SSL Certificate is specifically created to allow users to secure multiple domains and/or multiple sub-domains with one single SSL Certificate. Depending on the SSL Certificate product and brand, the certificate will include a different number of additional domains (called SANs) at the price quoted on the SSL Certificate’s details page (see screenshot on the right).

For example, a Multi-Domain (SAN) SSL Certificate that has 4 domains by default allows you to secure:

  • Four different domains:
    1. mysite.com
    2. example.com
    3. abcxyz.com
    4. demo123.com
  • Four different sub-domains:
    1. my.example.com
    2. mail.example.com
    3. test.mysite.com
    4. account.mysite.com
  • Four different domains and sub-domains:
    1. example.com
    2. my.example.com
    3. abcxyz.com
    4. mail.demo123.com

sanNOTE: Here is how you should configure your Multi-Domain SSL Certificate on our website: When you generate a CSR (Certificate Signing Request), please include one single domain name or sub-domain in it, such as: www.example.com. The rest of the domains or sub-domains, which are called SANs (2nd, 3rd, 4th domains or sub-domains) should be included in the fields for additional domains. You will see the fields for additional domains on the SSL Certificate configuration form, right under the text area for the CSR (see screenshot on the right).

multi-domain2When you buy or configure your Multi-Domain (SAN) SSL Certificate, please note that most Multi-Domain Certificates do not secure the domains with and without “www”. With other words if you want to secure both, example.com and www.example.com under one single Multi-Domain Certificate, that will be considered as two different domain names. The screenshot on the right shows you where you can find the attribute that tells you if your Multi-Domain Certificate secures both “www” and “non-www” under one single domain (SAN), or not.

Anyway, that is not a problem so as you cannot have the same website open both as www.example.com and as example.com. All website owners only choose one of these options and make the other option automatically re-direct to the other. For example, you can choose your website to always open at www.example.com and anybody who enters on example.com is automatically redirected to www.example.com. In this way, you only have to secure one domain, and that is: www.example.com.

The multi-domain certificate can be initially activated for the primary domain name.

If you wish to add more domains later, you need to reissue the certificate in your SSLDragon.com account, and add the SAN (additional domain) list in the SAN field, when reissuing.
due-date-2
due-date-2
If you need to add more domains than included by default, then please choose the Add More SANs option in order to pay for and activate the additional SANs.

When you buy a multi-domain SSL Certificate and you include several domain names and/or sub-domains in it, the Certificate Authorities require you to pass the domain validation for each and every domain name and/or sub-domain that you included in your multi-domain SSL Certificate, and only after that, the multi-domain SSL Certificate will be issued to you.

POSSIBLE PROBLEM: Sometimes the email addresses, or your HTTP options, or the DNS records that you choose for your multi-domain certificate do not get set correctly when they reach the Certificate Authority. You will know that when you see that you only got one single domain validation message to your email address instead of getting several domain validation messages, or your multi-domain SSL Certificate’s status still shows as “Awaiting Validation (Full)” even though you passed the domain validation for one of the domains.

partner-order-idHOW TO FIX: There is an easy way to fix that, and that requires getting in contact with the Certificate Authority’s Validation Department. When you contact them, please provide them your “Partner Order ID” (see screenshot on the right), and then tell them about the domain validation method that you chose to go with: HTTP, DNS, or Email. If you chose to pass the domains validation by email, then double-check with the Validation Department representatives what email addresses are set in their system, and ask them to send you the domain validation messages to your desired email addresses.

Sectigo/GoGetSSL

Please call Sectigo Validation Department at +1 (888) 266-6361 (Ext 4) or https://sectigo.com/support for the above-stated reasons. When you talk to them, you will need to provide them your “Partner Order ID”.

Thawte, GeoTrust, DigiCert

Please call Thawte, GeoTrust, DigiCert Validation Department at +1 (520) 477-3152 (Ext 2) for the above-stated reasons. Please note that Thawte, GeoTrust, DigiCert are all owned by DigiCert, and they all have the same phone number provided above.  When you talk to them, you will need to provide the “Partner Order ID”.

You can receive a refund ONLY for the additional domains (SANs) that you bought and NOT used.

If you have already activated the SAN (additional domain) for a particular domain name, then you cannot be refunded for that specific domain name.

A Wildcard SSL Certificate is specifically created to allow users to secure one single domain name and all its sub-domains. With other words, you can secure one single domain name and an unlimited number of sub-domains belonging to that domain name with one single Wildcard SSL Certificate.

You can add sub-domains to your server and they will be covered by your Wildcard SSL Certificate automatically. You do not need to re-issue your Wildcard SSL Certificate each and every time when you add sub-domains to it. The newly added sub-domains will be automatically covered by your Wildcard SSL Certificate.

NOTE: The sub-domains that you can secure with one Wildcard SSL Certificate have to be either 1st level sub-domains (e.g.: *.example.com) or 2nd level sub-domains (*.mob.example.com). You cannot secure 1st and 2nd level sub-domains with one regular Wildcard SSL Certificate.  If you want to secure 1st level sub-domains and 2nd level sub-domains, you have to get a Multi-Domain Wildcard SSL Certificate, or 2 separate Wildcard SSL Certificates.

For example, a regular Wildcard SSL Certificate allows you to secure:

  1. One main domain name (example.com) and all its 1st level sub-domains (*.example.com):
    1. my.example.com
    2. test.example.com
    3. dev.example.com
    4. mail.example.com
    5. (etc)
  2. Or, one sub-domain (mob.example.com) and all 2nd level sub-domains (*.mob.example.com):
    1. my.mob.example.com
    2. test.mob.example.com
    3. dev.mob.example.com
    4. mail.mob.example.com
    5. (etc)

In order to secure one domain and all its sub-domains as shown in the first example, you have to include *.example.com as a common name (domain name) when creating a CSR (Certificate Signing Request). If you want to secure 2nd level sub-domains, then you have to enter *.mob.example.com as a common name (domain name) when creating a CSR (Certificate Signing Request).

The sub-domains that you can secure with one Wildcard SSL Certificate have to be either 1st level sub-domains (e.g.: *.example.com) or 2nd level sub-domains (*.mob.example.com). You cannot secure 1st and 2nd level sub-domains with one regular Wildcard SSL Certificate.

If you want to secure 1st level sub-domains and 2nd level sub-domains, you have to get a Multi-Domain Wildcard SSL Certificate, or 2 separate Wildcard SSL Certificates.

For example, a regular Wildcard SSL Certificate allows you to secure:

  1. One main domain name (example.com) and all its 1st level sub-domains (*.example.com):
    1. my.example.com
    2. test.example.com
    3. dev.example.com
    4. mail.example.com
    5. (etc)
  2. Or, one sub-domain (mob.example.com) and all 2nd level sub-domains (*.mob.example.com):
    1. my.mob.example.com
    2. test.mob.example.com
    3. dev.mob.example.com
    4. mail.mob.example.com
    5. (etc)

In order to secure one domain and all its sub-domains as shown in the first example, you have to include *.example.com as a common name (domain name) when creating a CSR (Certificate Signing Request). If you want to secure 2nd level sub-domains, then you have to enter *.mob.example.com as a common name (domain name) when creating a CSR (Certificate Signing Request).

You can add sub-domains to your server and they will be covered by your Wildcard SSL Certificate automatically. You do not need to re-issue your Wildcard SSL Certificate each and every time when you add sub-domains to it. The newly added sub-domains will be automatically covered by your Wildcard SSL Certificate.

The Domain Validation (DV) SSL certificate is the most affordable choice for increasing the security of your blog, personal or small business website. Since there is no required paperwork, the process of acquiring the Domain Validation certificate is very quick and easy: you will have to prove that you are the domain owner just by responding to an automatic e-mail message. After a couple of minutes, you will receive the issued SSL certificate which can be installed immediately. Sites with Domain Validation certification can be identified by the padlock that is displayed by most web browsers.

This type of SSL certificates is recommended to be used if you need to prove that your site is secured, by having a secured connection. The Domain Validation certificates don’t display the legal entity, as the identity of the website owner is not checked while issuing them. So, if you have an e-commerce website or a site that collects users’ personal data, you should consider buying our Business Validation (BV) or Extended Validation (EV) certificates, which will make your site more trustworthy.

When requesting an SSL Certificate you have to prove that you own or you have management rights over the domain or sub-domain that you are requesting an SSL Certificate for.

STEP 1: Domain Validation (DV)

A. EMAIL

If you have an SSL Certificate issued by Sectigo, GoGetSSL, GeoTrust, Thawte, DigiCert, and RapidSSL, then you can complete the domain validation is by responding to an automated domain validation message sent to your email address. You will be given a list of emails to choose from, and the automated domain validation message will be sent to the email address that you choose.

Always check your email address (including your Spam folder) so as you should receive an email message from the Certificate Authority with instructions on how to validate (prove the ownership of) your domain name. The email message will ask you to copy a unique code and paste it on a specific link provided in the same email message.

Important: Only 5 e-mail addresses are allowed for domain validation: [email protected], [email protected], [email protected], [email protected] and [email protected]
In some cases, the Certificate Authority may allow your administrative e-mail from WHOIS, too, but ONLY IF the Private registration is disabled.

If your SSL Certificate is issued by Sectigo or GoGetSSL, there are 2 more ways how you can complete the domain validation:

B. HTTP / HTTPS method

The HTTP validation consists of uploading a TXT validation file to a pre-defined location on your website. You have to make sure that you can access this file and link from any web browser. Once you proceed with this domain validation method, Sectigo will run a scan of your website and will look particularly for this file at the given link. Your SSL Certificate will pass the domain validation within a few minutes after Sectigo’s system finds the TXT file on your website.

The HTTPS validation method is the same validation method as described above. You should choose the HTTPS option if you already have an SSL Certificate installed on your website.

C. DNS method

Sectigo allows you to add a pre-defined domain record to your domain registrar (the website where you registered your domain name). Make sure that your firewall doesn’t block Sectigo validation robot. Sectigo validation robot comes from secure.comodo.net / 91.199.212.132. The user agent should be “ComodoDCV” or “Sectigo DCV” or “COMODO DCV” or “SECTIGO DCV”.

Please note that newly added DNS records take between 10-48 minutes to propagate. This means that you will have to wait up to 48 hours to pass the domain validation if you go with this method. That is why we recommend the Email, HTTP, and HTTPS methods better, so as they would allow you to pass the domain validation instantly.

STEP 2: CAA Check

As of 8th September 2017, all Certificate Authorities (CAs) are obliged to respect your CAA policy, as a security measure.

The CAA record should allow the CA to issue the SSL for your domain name, otherwise, the order would be set as Pending until you update the record.

By default, if no CAA record found, any CA may issue SSL for your domain name. Otherwise, you should update your CAA record.

Here is how to do it:
– https://support.sectigo.com/Com_KnowledgeDetailPage?Id=kA01N000000zFMO
– https://knowledge.digicert.com/solution/SO29555.html

Here is how to test the record:
– https://toolbox.googleapps.com/apps/dig/#CAA/
– https://caatest.co.uk/scan.org.ua

Optional (Rare) – Brand Validation (Manual Check)

In some cases, the CAs may require manual verification if your order fails any internal rules of Brand Validation.

It takes around 24-48 hours to pass this manual check, and the CA will either issue or reject an order in such cases.

Here are the reasons why your order is under Brand Validation.


How to change the domain validation method?

If you chose one of these domain validation methods described above, and you see that your domain doesn’t get validated, then you can always change your domain validation method. Please go to this link to learn how to do that.

In order to buy a Domain Validated certificate, you do not need to provide any documentation. You will have to confirm the domain ownership through a simple email or file-based authentication. Following completion of one of these elements, the DV certificate will be signed and released to you.

Yes, absolutely.

The Multi-Domain (UCC/SAN) SSL Certificate allows you to secure multiple domains or subdomains which are hosted either on one IP address or different IP addresses. This SSL Certificate type was particularly designed to secure multiple websites within one single SSL Certificate as an easy-to-use and cost-effective solution. 

There are many different ways to install an SSL Certificate, and they all depend on your SSL Certificate brand, the webserver type, the operating system on your server, and the web hosting panel that you have on your server.

These being said, please check our Installation Articles to get detailed instructions on how to install your SSL Certificate on about 44 different server types, hosting panels, and operating systems.

Also, here are links to documentation on how to install your SSL Certificate on your server, based on the SSL Certificate brand that you have:
Sectigo
Thawte/RapidSSL/GeoTrust/DigiCert
GoGetSSL

We always recommend you get specialized help with your SSL Certificate installation. If you have a web developer or a system engineer, then they would be the right people to help you with your SSL Certificate installation.

Browser Compatibility

Chrome
IE
Firefox
Opera
Safari
Netscape
AOL
Camino
Konqueror

Server Platforms And Mobile Browser Compatibility

Server Platforms:
  • BEA Weblogic
  • IBM HTTP Server
  • Microsoft ISA
  • Microsoft IIS
  • Microsoft SQL Server 2005
  • Microsoft Live Communication
  • Apache
  • BEA Weblogic
  • Lotus Domino
  • OpenLDAP
  • C2Net Stronghold
  • Plesk
  • WebSTAR
  • Webmin
  • Java Web Server (Javasoft / Sun)
  • Ensim Control Panel
  • cPanel / Web Host Manager
  • Hsphere
  • C2Net Stronghold
  • iPlanet Server / Sun One
  • Java Web Server (Javasoft / Sun)
  • Lotus Domino
  • Tomcat
  • Netscape Enterprise Server
  • Novell ConsoleOne
  • Novel Webserver
  • C2Net Stronghold
  • And other SSL-Capable Servers
Mobile Browsers:
  • Android
  • Apple iPhone, iPod Safari 1+
  • Microsoft Windows Mobile 5/6*
  • Opera Mobile 6+
  • Opera Mini v3+
  • ACCESS NetFront Browser v3.4 +
  • RIM Blackberry v4.2.1 +
  • KDDI Openwave v6.2.0.12 +
  • Netscape Communicator 4.51+
  • NTT / DoCoMo
  • Nintendo Wii
  • Sony Playstation 3
  • Sony Playstation Portable

Need help securing your website? Have questions, or unsure which SSL to choose? Let our fearless dragons help you! Follow the following steps towards getting the type of help that you need.

1. Use our Wizard and find the SSL Certificate that suits you best;

2. Find your answers on our Frequently Asked Questions page;

3. Open a Ticket with our Sales, Billing and Technical Support dragons. We will answer your ticket as soon as possible. We work Monday through Saturday, from 9 AM to 11:00 PM Pacific Time;

4. Email us using our Contact Form.

2 SANs
Duration Price You Save
1 year $180.00
2 years $310.00
3 years $420.00
Site seal:

Order Steps

1
  • Click "Buy Now"
  • Create/Access your account
  • Submit payment
READ MORE
2
Configure the certificate in your account
READ MORE
3
Pass validation & receive your SSL Certificate
READ MORE

Other certificates from this issuer:

GoGetSSL BusinessTrust SAN $140.00
GoGetSSL BusinessTrust $73.33
GoGetSSL BusinessTrust Wildcard $176.66
See more

Certificates of the same validation:

GoGetSSL Multi-Domain Wildcard SSL $140.00
GoGetSSL Public IP SAN $70.00
GoGetSSL Multi-Domain SSL $43.33
See more

SSLS that secure same domains / sub-domains:

DigiCert Wildcard SSL $525.00
GoGetSSL BusinessTrust SAN $140.00
GoGetSSL BusinessTrust Wildcard $176.66
See more