Which wildcard SSL certificate is the best value?

[wheatgrass]

Some questions about wildcard SSL certificates:

1. Do wildcard SSL certificates work on 99% browsers as claimed by their issuers?
2. Which wildcard SSL certificate is the best value?
3. Will they work in DA if the main domain and subdomains share the same IP?

 

[nobaloney]

1. Do wildcard SSL certificates work on 99% browsers as claimed by their issuers?

Wildcard Certificates work on the same browsers as non-wildcard (per domain) Certificates. The ones we sell, created with an Equifax-owned root, seem to work well for our clients but we haven't tested them on every possible browser.

2. Which wildcard SSL certificate is the best value?

Value is a complex combination of price and features, so I'm really not able to answer that.

Perhaps you (and/or your clients) are looking for a brand-name certificate with a high-value (and expensive) warranty. Perhaps you're looking for fast issue. Perhaps you're looking an included reinstallation warranty. Only you can decide what equates to value. You can find our post in the DA Advertising Forum. While we're generally not the cheapest vendor for anything, we believe we offer good value.

There's at least one other Certificate-related advertisement in the Advertising Forum.

3. Will they work in DA if the main domain and subdomains share the same IP?

I don't know, but I've just left a message with my representative at GeoTrust to find out.

Jeff

 

[wheatgrass]

Re: Re: Which wildcard SSL certificate is the best value?

Wildcard Certificates work on the same browsers as non-wildcard (per domain) Certificates. The ones we sell, created with an Equifax-owned root, seem to work well for our clients but we haven't tested them on every possible browser.

I'm confused about what I've been reading about certificates being "created with an XXX-owned root". What does the phrase mean and how differently do such certificates work? Does their workability depend on the root certificate?

I'm interested in the $195 Godaddy.com wildcard certificate and the $199 FreeSSL wildcard certificate because the prices are very attractive, but I'm also concerned about whether they will work on 99% browsers as claimed. Anyone has any experience with them?

I don't know, but I've just left a message with my representative at GeoTrust to find out.

Please let me know when you hear from them. Thanks!

 

[nobaloney]

Re: Re: Re: Which wildcard SSL certificate is the best value?

I'm confused about what I've been reading about certificates being "created with an XXX-owned root". What does the phrase mean and how differently do such certificates work? Does their workability depend on the root certificate?

Yes, the Certificate requires a root Certificate, that's how the browser knows to accept it.

Each Certificate has a built-in root Certificate. Some also require a separate external root certificate be installed because their built-in root Certificate isn't recognized by enough browsers. So the Certificate either buys a root certificate from someone else that is recognized by browsers, or contracts to use one but not own it.

Comodo Certificates need an external root. I believe Starfield Certificates do as well, but I don't know if GoDaddy is selling a Starfield Certificate as a wildcard Certificate or if they're selling some other brand.

I'm interested in the $195 Godaddy.com wildcard certificate and the $199 FreeSSL wildcard certificate because the prices are very attractive,

There's no longer any such thing as a wildcard FreeSSL Certificate; the company has rebranded them as RapidSSL Certificates. They're the ones we sell. If you like their pricing you'll love ours; look at this thread for more information.

but I'm also concerned about whether they will work on 99% browsers as claimed. Anyone has any experience with them?

We've sold lots of our Certificates (they're RapidSSL Certs built from the same internal root as the ones on the RapidSSL site), but we've never sold any Wildcard certs.

I don't expect they have any less ubiquity than the less expensive RapidSSL certs for a single domain; they're the same Certificate except for how they determine which domain they'll work with.

Please let me know when you hear from them. Thanks!

The email I received in return says each subdomain requires it's own IP#. I can't guarantee otherwise.

I'm going to try to find out if I can get a one week test wildcard cert for testing; if they say no, then I'm not going to buy one to find out.

Jeff