Is is feasible to use the single self-signed certificate on multiple machines which are two way ssl communicating. | ansaurus

tags:

views:

32

answers:

2

Q:

Is is feasible to use the single self-signed certificate on multiple machines which are two way ssl communicating.

I have came across a situation where I need to have same certificate on 4 machines which are communicating with each other in a two way ssl.

Will it be problematic to have same certificate on client as well as server side for two way ssl communication.?

Thanks, Vinds

A:

please reply anyone asap...

thanks, Vinod

Vinds 2010-06-03 20:21:20

don't be such an asshole.

GregS 2010-06-03 20:23:49

I was not aware, if I can comment as well..!!

Vinds 2010-06-03 21:01:19

+1 A:

A server certificate usually lists its host name as the common name component of the subject, and it can also appear in the subject alternative names too. When establishing a connection, most applications expect the host name in the certificate to match a name of the host to which the connection is made; this is application level though, and not part of the SSL protocol itself.

Re-using the same certificate for many clients is not a problem.

erickson 2010-06-03 20:29:14

Thanks a lot erickson for your answer.I really apppreciate a quick response..!!Currently we dont want to enable the hostname verification.Now I would like to know, two servers communicating with each other in a "two way ssl" fashion, and having the "same private key", will that be problematic?

Vinds 2010-06-03 20:57:51

@Vinds: No problem at all. I often test 2-way SSL with a single certificate and haven't found any issues.

ZZ Coder 2010-06-03 22:07:39

That's right, as long as hostname verification is disabled, it's not a problem.

erickson 2010-06-03 22:52:49

@ZZ Coder: Are you and erickson the same person?

GregS 2010-06-04 00:50:03

Thanks ZZ Coder..!!

Vinds 2010-06-04 11:38:38

Thanks Erickson

Vinds 2010-06-05 11:23:51

related questions

Why is access denied when installing SSL cert on IIS 5?

What does a PHP developer need to know about https / secure socket layer connections?

Am I turning away customers by disabling SSL 2.0 and PCT 1.0 in IIS5?

Coding Dojo with IE and SSL

Enforce SSL in code in an ashx handler

How to connect to PostgreSQL from .NET using TLS with both client and server authentication?

HELP SSL GURUs!!! ... Problems with SSL Connection

What's a clean/simple way to ensure the security of a page?

How to specify accepted certificates for Client Authentication in .NET SslStream

SharePoint stream file for preview

Problem with Oracle Application Server SSL Certificates

Is there a limit with the number of SSL connections?

Testing HTTPS files with MAMP

Cheapest SSL certificates

Limiting traffic to SSL version of page only

How do I support SSL Client Certificate authentication?

Why can't I connect to my CAS server with Perl's AuthCAS?

Is there a way to make Firefox ignore invalid ssl-certificates?

How do I create a self signed SSL certificate to use while testing a web app.

Can a proxy server cache SSL GETs? If not, would response body encryption suffice?

HTTPS in IIS 5.1

How do you redirect HTTPS to HTTP?

Debugging: IE6 + SSL + AJAX + post form = 404 error

How do I add SSL to a .net application that uses httplistener - it will *not* be running on IIS

Options for Google Maps over SSL