...
Policy
- For a single hostname on a single IP address, a single InCommon SSL certificate should be requested
- For multiple hostnames on different IP addresses (even if on same physical machine), separate InCommon SSL certificates should be requested for each
- For multiple hostnames on same IP address, a single InCommon Multi Domain SSL (or InCommon Unified Communications) certificate should be requested using the Subject Alternative Names (SAN) field enumerating the multiple hostnames
- For multiple hostnames on same IP address, under exceptional circumstances (i.e. literally hundreds of hostnames on same IP or they change weekly) you can petition to use an InCommon Wildcard SSL Certificate. After acknowledging the risks below, a request and justification should be submitted to the UCI RAOs (security@uci.edu) for review and possible approval. If approved, the maximum term is 1 year for expiration of wildcard certificates rather than 3 years for the others.
...