DEC2014 - Best SSL for Multisite/ ProSite / Subdomains / DomainMap / Ecommerce

Searched the forums and there is loads of weird and sometimes conflicting information.

My questions are:

1 - What SSL cert do I need to get to allow pro-sites users to sell on their site?

2 - If a wilcard ssl covers subdomains, how do you cover a mapped domain with an ssl?

Incase, my setup is:
- Linux / Bluehost
- WP4.0 Multisite / Subdomain
- Domain mapped
- Prosites
- Commerce

  • Michael Bissett
    • Recruit

    Hey @redhillcreative, hope you're doing well today! :slight_smile:

    If my memory serves me, I believe that a UCC certificate has to be used on Multisites where Domain Mapping is employed, wildcard SSL certificates wouldn't be compatible with Domain Mapping.

    Hope this helps! :slight_smile:

    Kind Regards,

      • The Bug Hunter

      Alternatively, use SNI to support use of many single certs on one IP :slight_smile:

      CloudFlare uses an adaptation of SNI to provide their free SSL services...

      For a good host that deals with SNI and will provide managed services to complete your custom project, try (know WP, good with nginx & varnish too)

      If you want to try doing it yourself, I believe that Media Temple offers SNI with their unmanaged DV plans.

      Many hosts can offer SNI - in fact, if they have no idea what it is, then just move on in your search for a host.

      Hope this can be helpful :slight_smile:

      Cheers, Max

  • mightygeeks
    • Design Lord, Child of Thor

    So which one would you guys recommend me implementing for my multisite? I really need some help on this. Should I go with UCC or SNI? Please help. I've been trying to find the answer to this for quite some time and I'm stuck moving forward with SSL for my Gravity Forms and other plugins that use Stripe on WordPress Multisite.

    Thanks in advance for your help.

      • The Bug Hunter

      @mightygeeks its all about selecting an SSL certificate that is appropriate for the project at hand... have you priced some of these approaches yet? If not, that might start narrowing the field for you (eg. UCCs can get very spendy).

      If you want to offer HTTPS mapped address, then you may be generally best served by investigating SNI a bit more...

      Unless you know for sure that you have a need for using 'higher' security certs (like EV) then frankly you may not even need to pay for any cert to begin with... I have several networks running now that use self-signed certs to secure the original network domain/subdomains which is all that CloudFlare requires before they will issue certificates.

      the above are all on one such network (only self-signed Wildcard & CloudFlare certs).

      Hope this can be helpful... this is not a straightforward topic area, obviously :slight_smile:

      Kind Regards, Max

  • mightygeeks
    • Design Lord, Child of Thor

    I have priced them, but somewhere in the WPMUDev support it says that wildcard SSL's don't work with WPMS. Is that true? Is there anyone that's implemented wildcard SSL successfully on a subdomain multisite configuration? If so, are there additional steps I would need to take to make sure it works? And will that work with mapped domains as well? I know it's not a straightforward topic area, but right now I feel like a frog in a blender! ;(

    • Ash
      • WordPress Hacker

      Hello @mightygeeks

      Wildcard SSL works with WPMS, but it's complex if you use Domain Mapping.

      However it might be best if you open your own, even if the issues seem closely related. That way it will remain independent of this one and ensure it doesn't confuse issues here if this thread needs reopening again by the author.

      It also means the member who started this thread or anyone following it isn't inundated with post notifications each time we respond to each other. A lengthy thread could annoy the original poster.

      This also allows us to better track and answer your questions to ensure we don't miss any for you.

      You can start a new thread here:


Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.