Wildcard DNS and Wildcard Certificates
Wildcards let a single DNS record or certificate cover every subdomain at once, using an asterisk to mean “anything”. They can save a great deal of repetitive setup, but they also have limits and security considerations worth understanding.
This article explains what wildcards do and when they are the right tool for the job.
Wildcard DNS Records
A wildcard DNS record such as *.yourbrand.com matches any subdomain that does not have its own specific record, pointing them all to the same place.
Wildcard Certificates
Similarly, a wildcard certificate secures every subdomain of a domain with one certificate, saving you from issuing and renewing many separate ones.
- Ideal when you create many subdomains, such as one per customer.
- Reduces the admin of managing dozens of certificates.
- Only covers one level of subdomain, not deeper combinations.
A Security Note
Because a wildcard certificate's private key secures every subdomain, keeping that key safe is especially important. We balance the convenience of wildcards against this concentration of risk.
If you need a hand with any of this, your Progressive Robot delivery team is ready to help. Raise a ticket from the Support area of your client portal or speak to your account manager and we will guide you through the next steps.