SSL - is there a definitive Current answer?

Possible? How? What do we need?
SSL > multisite > subdomains > multidomains > domain mapping >
https://mainsite.com
https://subsite.mainsite.com (https://subsite.com)
https://niche.subsite.com

or as a compromise

SSL > multisite > subdomains > domain mapping >
https://mainsite.com
https://subsite.mainsite.com (https://subsite.com)

please don't simply place a link to one of the other 30 discussions about this - no, yes, $10,000, call me maybe ...

please provide a response that if we are using WPMUDev plugins for domain mapping, multi-domains etc - how do we implement SSL which is now required for just about all pages if you hope to rank in Google SERP. and/or develop a commercial site with paid subsites

one previous post from staff (Hoang Ngo) said that mulidomain SSL is possible but didn't explain what cert is required and how to implement

another staff response said that multidomains and marketpress plugins 'might' be updated for SSL (that was 5 months ago)

truly appreciate the support for answering this, thanks

  • Tyler Postle

    Hey Tripvendor,

    Hope you're doing well today!

    You can only have 1 SSL cert per virtualhost, and when using multisite everything is shared through 1 virtualhost.

    This means you can have either a basic SSL, a wildcard SSL, or a UCC Multi-Domain SSL.

    Wildcard SSL will protect all your subdomains and your main domain.

    UCC Multi Domain SSL(expensive) will protect up to 100 domains.

    Baisc SSL - just the 1 domain.

    So, you can't use both a Wildcard SSL and a UCC Multi Domain SSL, which means you can't protect both your subdomains and your TLD mapped domains.

    Which is why you often see sites that will redirect to the original domain for the checkout - because they can't have both https.

    So you have a choice to make :slight_smile: personally I would do the Wildcard SSL. Multi-domain is limited and very expensive.

    Hope this helps Tripvender!

    Let us know if you have any further questions.

    All the best,
    Tyler

  • tripvendor

    thanks Tyler

    its almost the definition of insanity... keep asking the question hoping for a different answer

    I read rumors about free SSL for all coming out this summer - but who knows what that really means as implemented under this scenario

    I was also trying to figure out how to use Cloudflare as a solution for this, to at least have the data encrypted albeit without the browser displaying https security...

  • tripvendor

    Hi Tyler,

    I'm not one to accept being told I can't do something... so I kept digging... (see comment above about definition of insanity)

    now I'm wondering if your reply is completely accurate.

    I just read http://halfelf.org/2014/ssl-for-one-domain-on-multisite/ and http://wiki.apache.org/httpd/NameBasedSSLVHostsWithSNI and I'm wondering if with SNI wouldn't that overcome your comment that you can't cover the mapped domains because of single virtualhost

    I'm desperately seeking walk through guide on this because I don't understand what I'm reading and/or what needs to be done step by step

    does SNI solve SSL for multiple mapped domains?

  • aristath

    Hello there @tripvendor, I hope you're well today!

    I too have read a lot of things, and info about SSL is a bit confusing. Everyone says something different and we try to post only about the things we're absolutely certain about.
    SNI & universal SSL are relatively new and I haven't tried them myself... not a lot of info is available out there about it!
    I guess the only way to see if this will actually work would be to test it yourself on your site.
    The easiest way I've seen so far to do that is using CloudFlare: https://www.cloudflare.com/ssl

    I hope that helps!

    Cheers,
    Ari.

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.