SAN (Subject Alternative Name) query - is it mandatory ?

Question

Hello Team,&nbsp;
What is Subject alternative name in the certificate?
Is it mandatory to fill the SAN details?&nbsp;
Regards,&nbsp;
Dayesh&nbsp;

stanislas_piro2 · Answer

RFC describe following behavior :&nbsp;
if both SAN and subject are defined, the only value that is checked to match server name matches is SAN if only subject is defined, the server name must match subject.
So SAN is not mandatory, ... &nbsp;
But Google Chrome decided to change rules since 2017... google chrome obsoletes subject validation and requires SAN as the only valid server name field.&nbsp;

Forum Discussion

SAN (Subject Alternative Name) query - is it mandatory ?

1 Reply

Recent Discussions

Geo Fence in ASM through irule for URI

Client certificate Authentication - open multiple tabs

google autenticator broken barcode

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Related Content

X509 Subject Formatting

F5 RHI Solution an alternative to GSLB load balancing between Datacenters

Wordle alternatives?

HTTP throttle alternative

Alternative Solution To Sideband Connection