Hi
I am testing Certwarden with wildcard certificates that I want to distribute to different hosts (multiple local reverse proxies). However, it seems that wildcard certificates are not compatible with the Certwarden client, is that correct?
When I renew the certificate in Certwarden, I see following error message:
4/27/2025, 6:34:44 PM, error, orders/post_process_do_client.go:104, orders: post processing worker 0: order 3: notify client failed: failed to post to client (Post "https://*.example.org:5055/certwardenclient/api/v1/install": dial tcp: lookup *.example.org: no such host) (cert: 1, cn: *.example.org)
This makes sense, since Certwarden is supposed to connect to the subject.
I was also looking for an environment variable that might bypass this problem: a FQDN that is sent from the client to the server when the certificate is pulled for the first time and is then linked to the certificate. The server then contacts this FQDN on port 5055 on renewals, instead of the subject.
At least it was a way of functioning that I could have imagined. But there does not seem to be such a thing, correct?
Are there other solutions for using wildrcads with Certwarden Client? Have I missed something?
Cheers,
adilette