Microsoft Office Tutorials and References
In Depth Information
Installing IIS on the AD FS server
Figure 3-21 Information required for the certificate.
The controversy about wildcard certificates
Consider using wildcard certificates because they provide you the flexibility and
convenience to change the host or service name without having to reissue the certificate.
However, there is a long, ongoing debate about avoiding wildcard certificates as a
security best practice. Whether you are a proponent of wildcard certificates or not will
depend on your security posture and professional stance on this topic; however, this is
beyond the scope of discussion for this topic. We are simply pointing out that there are
benefits to using wildcard certificates whenever there are name changes to servers and
services involved, including the AD FS service.