nerdexam
CompTIA

SY0-301 · Question #873

Deploying a wildcard certificate is one strategy to:

The correct answer is D. reduce the certificate management burden.. A wildcard certificate (e.g., *.example.com) covers a domain and all of its immediate subdomains with a single certificate. Instead of procuring, deploying, and renewing separate certificates for mail.example.com, shop.example.com, vpn.example.com, etc., one wildcard certificate

General security concepts

Question

Deploying a wildcard certificate is one strategy to:

Options

  • Asecure the certificate's private key.
  • Bincrease the certificate's encryption key length.
  • Cextend the renewal date of the certificate.
  • Dreduce the certificate management burden.

How the community answered

(20 responses)
  • A
    5% (1)
  • C
    5% (1)
  • D
    90% (18)

Explanation

A wildcard certificate (e.g., *.example.com) covers a domain and all of its immediate subdomains with a single certificate. Instead of procuring, deploying, and renewing separate certificates for mail.example.com, shop.example.com, vpn.example.com, etc., one wildcard certificate handles them all - dramatically reducing management overhead. It does not secure the private key any differently than a standard cert. It does not inherently increase key length (that depends on how the cert is generated). It does not extend renewal dates. The sole advantage and purpose of a wildcard cert is simplified, centralized certificate management.

Topics

#wildcard certificate#PKI#certificate management

Community Discussion

No community discussion yet for this question.

Full SY0-301 Practice