Multi Brand & SSL

5 Comments

  • Max McCal
    Comment actions Permalink

    Hey, Peter - 

    You have this pretty much right on. Regenerating the cert has consequences, certainly, and it's not optimal, but it was the best option we could support on short notice. We're working on another, better solution, but I can't get too detailed about that yet.

    Option two won't involve any warnings because there won't be a certificate failure. It would be the same as being redirected to any http page. There may be certain security settings on different browsers that recognize that kind of thing, but I'm not personally aware of them. 

    -1
  • aagarwal
    Comment actions Permalink

    Is a better solution coming soon? We support 2 very different products via the same team and having a multi-site cert host the support portals of both is highly undesirable since it shows they are connected.

    1
  • Ben Rohrs
    Comment actions Permalink

    We recently released new SSL certificate functionality which may help here. You can now obtain a free cert from Zendesk using Zendesk-provisioned SSL, which will automatically cover brands as they are added. You might consider switching to this new feature. It would require a one-time transition but then new brands would be included.

    0
  • James Ryan
    Comment actions Permalink

    Wait a minute... so I just spent $500/month extra to "upgrade" for multi-brand support and you can't even support separate SSL certificates per brand?

    This feature is useless without that. When will it be available? This is really unacceptable.

    -2
  • Jessie Schutz
    Comment actions Permalink

    Hey Jim! Sorry for the delayed response here!

    I see you were able to get assistance with this in a ticket; I'm going to paste Garrick's response here in case anyone else runs into the same issue.

    "While we only support the upload of a single SSL certificate to cover all your brands, this can be accomplished by listing each brand's hostmapped URL (e.g. support.yourdomain.com) in the Subject Alternative Name of the certificate, and we support both IP-based and SNI-based certificates for upload.  

    You're certainly welcome to request and upload your own certificate, but there's an excellent free option within Zendesk using our Zendesk-provisioned SSL certificate.  To set up you'd simply:

    This will instantly request and issue an SNI-based SSL certificate from the Let's Encrypt certificate authority which will cover all your brands and will be served immediately.  It's completely free, covers all your brands, and Zendesk will automatically renew it on your behalf upon expiration, so that's one less thing you have to remember to maintain."

    2

Please sign in to leave a comment.

Powered by Zendesk