This topic describes how to add an additional certificate to a listener of a Classic
Load Balancer (CLB) instance.
- Log on to the CLB console.
- On the Instances page, click the ID of the CLB instance.
- On the Listener tab, find the HTTPS listener that you created and choose in the Actions column.
- In the Manage Additional Certificate panel, click Add Additional Certificate.
- Enter one or more domain names. The domain name can contain only letters, digits,
hyphens (-), and periods (.). It must start with a letter or digit.
Domain name-based forwarding rules support exact matching and wildcard matching.
- You can specify a specific domain name such as www.aliyun.com in a forwarding rule.
- You can also specify a wildcard domain name such as *.aliyun.com or *.market.aliyun.com
in a forwarding rule.
If a request matches multiple domain-based forwarding rules, exact matching prevails
over wildcard matching. If multiple wildcard domain names are matched, a higher-level
wildcard domain name prevails over a lower-level wildcard domain name.
Note In the following table, "√" indicates that the domain name is matched and "×" indicates
that the domain name is not matched.
Mode |
Request URL |
Domain name-based forwarding rule |
www.aliyun.com |
*.aliyun.com |
*.market.aliyun.com |
Exact matching |
www.aliyun.com |
✓ |
× |
× |
Wildcard matching |
market.aliyun.com |
× |
✓ |
× |
Wildcard matching |
info.market.aliyun.com |
× |
× |
✓ |
- Select the certificate that is associated with the domain name.
Note
- The domain name of the certificate must be the same as that of the additional certificate
that you added.
- If multiple wildcard certificates are added, only the first wildcard certificate can
be matched.
- Click OK.
After you add an additional certificate, you must create a forwarding rule based on
the domain name associated with the additional certificate. Otherwise, the additional
certificate is invalid.
- Optional:To create a forwarding rule, perform the following operations:
- On the Note page, click Configure Rule. You can also click the ID of the CLB instance on the Instances page and click the Listener tab.
- Find the HTTPS listener and click Add Forwarding Rules in the Actions column.
- In the Add Forwarding Rules panel, click Add Forwarding Rules.
- Configure the forwarding rule.