With this feature enabled, Web sites with wildcard certificates (consisting of CN entries such as *.mydomain.com) are verified using the main domain (mydomain.com). The check takes place in this order:
- Verification of the server name in the "Client Hello" (depending on the browser used)
- Verification of the CN in the SSL certificate that you received
- Entries with wildcards are ignored
- If the CN cannot be verified, the field "Alternative Name" is evaluated
- DNS reverse lookup of the associated IP address and verification of the host name obtained
- If wildcards are included in the certificate, the main domain is checked instead (corresponds to the above function)
- Verification of the IP address
- SNMP ID:
- 2.41.2.2.29
- Telnet path:
- Setup > UTM > Content-Filter > Global-Settings
- Possible values:
- No
- Yes
- Default:
- No