SSL certificate full, strict or flexible?


I have a question regarding whether to configure the SSL setting as full, strict, or flexible.

If my main domain, for example, example[.]com, includes a universal certificate with a CA authorized certificate,
but other subdomains (such as test[.]example[.]com) don’t have certificates - only the universal certificate - what should I choose full, strict, or flexible?

Because the option you choose affects both the domain and subdomains, doesn’t it?


Simple rule: always use Full Strict, none of the legacy modes

But you do need a certificate for the other hostnames as well, otherwise SSL cannot work in the first place.

Any yes, the setting works for the entire domain.

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.