On Wed, May 18, 2022 at 11:53 PM Frank Gingras <thumbs@xxxxxxxxxx> wrote: > > Not sure if you saw the other answer on the other email: > > // If you can't use a SAN, then you need to configure all your vhosts as IP:443, whereas one vhost uses a separate IP, and the remainder uses the second IP. That sounds wrong to me. Apache should pick a matching certificate for the hostname specified via SNI by the client, if any, or the first one configured as a fallback (assuming the vhost IP / * specification matches). Note that only vhosts with IP:port are considered, if any are specified and match the request. You should be able to use *:443 for all vhosts. Rainer --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|