0
0
Nginxdevops~5 mins

SNI for multiple SSL certificates in Nginx - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What does SNI stand for and why is it important for multiple SSL certificates?
SNI stands for Server Name Indication. It allows a server to present multiple SSL certificates on the same IP address and port, enabling hosting of multiple secure websites without needing separate IPs.
Click to reveal answer
intermediate
How does nginx use SNI to serve different SSL certificates?
nginx uses the server_name directive inside server blocks to match the requested hostname. It then selects the correct SSL certificate configured for that server block using SNI.
Click to reveal answer
beginner
What is the minimum nginx configuration needed to enable SNI for two domains?
You need two server blocks each with its own server_name, ssl_certificate, and ssl_certificate_key directives. nginx automatically uses SNI to serve the right certificate based on the hostname.
Click to reveal answer
intermediate
Can SNI work with clients that do not support it?
No, clients that do not support SNI will not be able to select the correct certificate and may see certificate warnings or connection failures.
Click to reveal answer
beginner
Why is SNI preferred over using multiple IP addresses for SSL hosting?
SNI allows multiple SSL sites to share one IP address, saving IP resources and simplifying server management compared to assigning a unique IP for each SSL site.
Click to reveal answer
What does SNI enable on a web server?
AEncrypting HTTP traffic without certificates
BIncreasing server CPU speed
CBlocking unwanted IP addresses
DServing multiple SSL certificates on one IP address
In nginx, which directive is used to specify the domain name for SNI?
Assl_certificate
Blisten
Cserver_name
Droot
What happens if a client does not support SNI when connecting to an nginx server with multiple SSL certificates?
AThe client may see a certificate warning or fail to connect
BThe server automatically disables SSL
CThe client receives all certificates
DThe server redirects to HTTP
Which nginx directive specifies the SSL certificate file for a domain?
Assl_certificate
Bssl_key
Cssl_certificate_key
Dssl_protocols
Why is SNI useful for hosting multiple HTTPS sites on one server?
AIt speeds up SSL handshake
BIt allows sharing one IP address for many SSL sites
CIt disables SSL for some sites
DIt compresses SSL certificates
Explain how nginx uses SNI to serve multiple SSL certificates on one IP address.
Think about how nginx matches the requested domain to the right certificate.
You got /5 concepts.
    Describe the limitations of SNI and how it affects clients without SNI support.
    Consider what happens if the client cannot tell the server which site it wants.
    You got /4 concepts.