Hi,
I have been trying to get a definitive answer on whether Web Application Proxy on Server 2012 R2 supports wild card certificates.
One article on technet, http://technet.microsoft.com/en-us/library/dn528827.aspx, very clearly states that
"Web Application Proxy does not support wildcard domain publishing. That is, you cannot configure an external URL using a wildcard; for example, https://*.contoso.com."
Another article, http://technet.microsoft.com/en-us/library/dn383662.aspx, on installing WAP states -
"Web Application Proxy servers require the following certificates in the certificate store on each Web Application Proxy server:
- A certificate whose subject covers the federation service name. If you want to use Workplace Join, the certificate must also contain the following subject alternative names (SANs): <federation service name>.<domain> and enterpriseregistration.<domain>.
- A wildcard certificate, a subject alternative name (SAN) certificate, several SAN certificates, or several certificates whose subjects cover each web application.
- A copy of the certificate issued to external servers when using client certificate preauthentication."
From this it looks like wild card certificates are accepted. Can someone please confirm if they are.
Thanks,
B