Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SNI Best Practice

Discussion in 'Security' started by enigmait, Jul 6, 2016.

  1. enigmait

    enigmait Registered

    Feb 1, 2012
    Likes Received:
    Trophy Points:
    cPanel Access Level:
    Root Administrator

    Is there a best practice for SNI?

    i.e my main server is hosted on ip (not my real IP) and uses SSL to host the cpanel interfaces.

    Shall I use a separate IP to host all the SNI websites that need certificates i.e or put it all to the primary ip of
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Apr 11, 2011
    Likes Received:
    Trophy Points:
    cPanel Access Level:
    Root Administrator

    Here's a brief overview from our SSL FAQ document that explains how SNI support works:

    You can use the same IP address for multiple SSL certificates. The main caveat most people notice with SNI is that SSL becomes accessible for all domain names on the IP address, even if no SSL certificate is installed for the domain name:

    My certificate installed, but visitors who try to securely access other sites on the shared IP address can only see the site with an installed SSL certificate, not my default domain.

    Thank you.
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice