SSL Certificate for multiple domains hosted on the same server

Hello,

We have a WordPress site that uses multiple domains on the same directory, hosted on the same server.

For example we have agency-example.com as primary domain.

We also have multiple secondary domains like 83steet.com, that are hosted on the same server (with same IP address). There are 200+ domains that we have , they are managed by an alias file so they use the same directory virtual host.

One note is that we don’t know the list of all domains from the beginning.

We use some API to automatically register new domains in our application.

Is there any cloudflare SSL that is suitable for our needs?

  1. I saw that “ Cloudflare Dedicated Certificate with Custom Hostname : $10 per domain per month*”*
  • “Protects your domain, subdomains, as well as up to 50 additional hostnames”

This certificate can protect the agency example above + subdomains and also 50 different domain names ?

If yes, is there an automatically solution (api) to add domains to that certificate? Because as I wrote before, our app register new domain names dynamically.

Should the nameservers of all the domains be pointed to cloudflare?

  1. How About Wordpress Cloudflare WordPress Plugin and Free SSL Certificate for WordPress ?
  • Can we secure 200+ domains on the same server and same ip?
  • Should the nameservers of all the domains should be pointed to cloudflare?
  • Is there a dynamic solution (api) for adding ssl to CloudFlare account? We want all the domains that are registered dynamic in our app , to also have ssl. So we want to avoid manual steps like login to Cloudflare, click “Add site” , etc.

There are two parts.

  1. Your server configuration. You need to configure for each site an accordingly valid certificate under the respective virtual host of each domain.
  2. Cloudflare. Thats pretty straight forward. You simply need to add each domain separately to Cloudflare. There is no particular SSL configuration to consider in this case, as Cloudflare will take care of the proxy certificates themselves.

Dedicated certificates are of no relevance in this case, as they are domain specific and only apply to the proxies and cant be used for the certificates you have to install on your own server.

Hello @sandro and thanks for your answer.
I didn’t understood from your answer:
If we choose " Cloudflare Dedicated Certificate with Custom Hostname" we need to:

  • Your server configuration. You need to configure for each site an accordingly valid certificate under the respective virtual host of each domain.

Let’s skip the configuration part, because in the first place I just want to be sure that this certificate is suitable for us.
This certificate can protect the agency example above + subdomains and also 50 different domain names ? If yes, is there an automatically solution (api) to add domains to that certificate? Or it is the same certificate that we need to configure in all virtual hosts of the domains? I’m consufing where we need to declare this 50 domains.

  1. Wordpress Cloudflare WordPress Plugin and Free SSL Certificate for WordPress
  • Cloudflare. Thats pretty straight forward. You simply need to add each domain separately to Cloudflare. There is no particular SSL configuration to consider in this case, as Cloudflare will take care of the proxy certificates themselves.

So for this solution we need to add each domain separately.
From what I understood from your answer:

  • We need to add each domain separately to Cloudflare
  • We need to update each domain nameservers to point to Cloudflare. Cloudflare will take care of the proxy certificates after that, we don’t need to install anything on our server.

My questions:
We have some limitations in this case ? We can secure as many domains as we want ?
It’s ok that all the domains have the same ip address ? They don’t require unique ip address ?

Regarding API, there is no solution for that. We need to add each domain mannualy, right ?

In which case?

You can add as many domains as you want, but you will need to buy a dedicated certificate for each domain.

A shared IP address is just fine.

You can add a domain via the API as well.

I’m talking about “Free SSL Certificate for Wordpress” :

We can install 200+ free certificates ?
Or we need to buy dedicated certificate for each domain?

I am afraid this article does not have much substance but is mostly marketing speak.

If you need a dedicated certificate you need to buy it separately for each domain you want to add to Cloudflare. But why would you need a dedicated one in the first place? The proxies have free certificates issued for each domain anyhow.

That only applies to the proxies however, you will still need a certificate on your server of course, but that is completely unrelated to Cloudflare.

I’m a little bit confuse about the difference between “dedicated” and “proxies” certificates.
Our scope is just run all the domains names under https, so I guess we don’t really need dedicated certificate.

The proxies that have free certificate, are described here, right?
https://www.cloudflare.com/ssl/

If we choose the simplest solution " Flexible SSL" we need to configure anything in our server ?
As I saw i this tutorial https://www.youtube.com/watch?v=XxlbH5xMucQ we just need:

  • add domain to cloudflare account
  • change the domain nameservers
    Our problems is the automation, because we need to "add domains to cloudflare account " dynamically, via API, (when someone register a new domain in our application)

Thank you for you patience

That is not a solution. In that case you wont have any encryption.

You still need certificates on your server.

This topic was automatically closed after 31 days. New replies are no longer allowed.