For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Dec 11, 2018

SAN (Subject Alternative Name) query - is it mandatory ?

Hello Team,

What is Subject alternative name in the certificate? Is it mandatory to fill the SAN details?

Regards,

Dayesh

application delivery

1 Reply

Stanislas_Piro2
Cumulonimbus
Dec 12, 2018
RFC describe following behavior :

if both SAN and subject are defined, the only value that is checked to match server name matches is SAN
if only subject is defined, the server name must match subject.

So SAN is not mandatory, ...

But Google Chrome decided to change rules since 2017... google chrome obsoletes subject validation and requires SAN as the only valid server name field.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Academy at AppWorld 2026

DevCentral News

Introducing the F5 AI Assistant for BIG-IP

Technical Articles

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5