Wildcard SSL certificate and Domain mapping - not working on users sites

Hi There,
I recently purchased a wildcard SSL certificate for my multisite network. My aim is to add SSL to all my users' sites, even though they have mapped domains. I have been reading this post here which gave me hope:
https://premium.wpmudev.org/blog/ssl-domain-mapping/

The wildcard SSL is set up on my server and I have changed the settings in my Domain mapping plugin as per the tutorial, however, when I try and force SSL on a page on one of my users sites, I get a Privacy Error from my browser, saying "Connection is not secure".

So for example, https://mainblog.com works fine, but, https://usersblog.com shows insecure connection error. Have I missed something?

  • Adam Czajczyk

    Hello Samuel,

    I hope you're well today and thank you for your question!

    The post mentions different kind of SSL certificates and in your case in addition to the wild-card certificate, either a "multi-domain" certificate will be necessary or multiple singe domain certificates if your host supports using multiple certs with one hosting account.

    This is because wild-card certificate protects your entire network but only in terms of "main domain and its sub-domains". Let's say such a certificate was issued for "domain.com": it will protect "domain.com", "test.domain.com", "site.domain.com", "domain.com/something" etc but not "otherdomain.net".

    That's not a flow in Domain Mapping but the way SSL certification works - the point of the certificate is that it has to include domain name that it's protecting. As long as your client's site is available under "original domain" only (meaning sub-domain of your main domain or sub-folder of it), it should be protected fine. Once it gets its own domain, a cert for that domain must also be installed on your server, either in form of multi-domain certificate that includes this domain or in form of additional single domain certificate.

    If you have additional questions, let me know please.

    Best regards,
    Adam