Add an additional certificate

This topic describes how to add an additional certificate to a listener of a Classic Load Balancer (CLB) instance.

1. Log on to the CLB console.
2. On the Instances page, click the ID of the CLB instance that you want to manage.
3. On the Listeners tab, find the HTTPS listener and choose > Manage Additional Certificate in the Actions column.
4. In the Manage Additional Certificate panel, click Add Additional Certificate.
   1. Enter a domain name. The domain name can contain only letters, digits, hyphens (-), and periods (.).It must start with a letter or a digit.
      Domain name-based forwarding rules include exact matching and wildcard matching.

      • Exact domain name: www.aliyun.com
      • Wildcard domain name: *.aliyun.com, *.market.aliyun.com

        When a request matches multiple forwarding rules, exact matching prevails over exact wildcard matching, and exact wildcard matching prevails over less exact wildcard matching. The following table describes the priorities of domain name-based forwarding rules.

        Type	Request URL	Domain name-based forwarding rule
        		www.aliyun.com	*.aliyun.com	*.market.aliyun.com
        Exact match	www.aliyun.com	√	×	×
        Exact wildcard matching	market.aliyun.com	×	√	×
        Less exact wildcard matching	info.market.aliyun.com	×	×	√

   2. Select the certificate associated with the domain name.
      Note

      • The domain name in the certificate must be the same as the domain extension that is added.
      • If you configure wildcard domain certificates, only the first wildcard domain certificate can be automatically matched.
   3. Click OK.
      An additional certificate takes effect only when it is configured with a forwarding rule and the domain name specified in the rule is the same as that in the additional certificate.
5. Optional:Perform the following steps to configure a forwarding rule.
   1. On the Note page, click Configure Rule. Alternatively, click the ID of the CLB instance on the Instances page and click the Listeners tab.
   2. Find the HTTPS listener and click Add Forwarding Rules in the Actions column.
   3. In the Add Forwarding Rules panel, click Add Forwarding Rules.
   4. Configure the forwarding rule.
      For more information, see Forward requests based on domain names or URLs.

      Note Make sure that the domain name configured in the forwarding rule is the same as the domain extension that is added.