This article reviews various considerations to take into account when accessing your site over SSL. Features such as F1 contextual help and Salesforce and Zendesk integrations require a connection over HTTPS.
The most common SSL covers a single domain such as "www.domain.com".
Subject Alternate Name (SAN) SSL certificates can contain several domains such as "www.domain.com" and "help.domain.com". SAN certificates are not the same as Wildcard SSL certificates; Wildcards cover all subdomains (e.g. *.domain.com).
NOTE: If you are using the older F1 Contextual Help implementation, a specific Subject Alternate Name (SAN) SSL certificate is required. The Contextual Help Touchpoint requires an SSL, though any SSL type can be utilized.
Before purchasing an SSL for your custom domain, there a few considerations to take into account. All MindTouch sites require the usage of an SSL certificate. A shared SSL is included for all MindTouch.Us domains: https://*.mindtouch.us
Configuring an SSL with a Custom Domain
When configuring your MindTouch site with a custom domain (e.g., "help.domain.com") as well as an SSL for your custom domain, the complimentary https://*.mindtouch.usdomain will no longer redirect to your custom domain. If your site is utilizing a custom domain without an SSL, then the complimentary https://*.mindtouch.us domain will redirect accordingly.
MindTouch requires that SSL certificates be SHA-256 compatible. Please be sure your SSL is created with this encryption level support.
SSL providers often times request what type of web server the SSL will need to be generated for; in these instances choose an option for Apache.
SSL connections are required for all MindTouch sites. If your site is not utilizing a custom domain you can reference the shared SSL available for https://*.mindtouch.us.
If your site is using a custom domain then you will need to configure an SSL for your custom domain and reference your custom domain over HTTPS.
SSL Required? Yes