This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 32%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
Why is my wildcard certificate being generated with the wrong "issued to" information?
I´m generating my wildcard certificate (*.mycorp.net) not using CN, instead, using DNS (like a SAN certificate)
It works ok, using MMC certiicate snap-in, but the "issued to" is being filled with some other field, like "Country", "Organization"
based on my tests, i can´t use the CN because it conflicts with Website and Chrome browser it doens´t accept it, so im generating using a SAN-style", but instead seeing *.MyCorp.net in the "issued to", it looks like it´s being used a random information from other fields, like "Country", "Organization"
What should I do?
The certificate works with no problem, but when users try to see the basic cert information, they´re not seeing the *.mycorp.net as usual
Win2012R2/Enterprise CA/Root/Single CA/Internal
You should do nothing as long as SAN extension is presented and all required names are included in it. Issued To is automatic property that tries to find just one suitable name from Subject.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 62%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDZ%3C/text%3E%3C/svg%3E)
Hi,
How do you request wildcard certificate? Would you please tell us the steps?
Hi
How are things going on your end? Please keep me posted on this issue.
If you have any further questions or concerns about this question, please let us know.
I appreciate your time and efforts.
Best Regards,
Daisy Zhou
Hi,
I am just writing to see if this question has any update. If anything is unclear, please feel free to let us know.
Thanks for your time and have a nice day!
Best Regards,
Daisy Zhou
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 28.999999999999996%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
Are you using DNS type on Alternative name section?