Exam SY0-601 topic 1 question 361 discussion

* - secondary subdomain app1 - subdomain comptia - domain

Believe in yourselves, you're not alone. I've been grinding here too, doubting myself but...I'll never stop.

A contains wildcards at the 1st subdomain level B doesn't contain wildcards D contains wildcards at the 1st subdomain level + certificate is valid for 2 years C contains wildcards at the second subdomain level and a certificate valid for one year. * - used for wildcards in the first subdomain level app1 - is the second subdomain comptia - is the domain org - is the top-level domain

C is the Answer And also to Note the Option D cert expires in 2 years which is wrong. an PKI cert should be valid is less than 1 year

crystal clear

https://www.ssldragon.com/blog/wildcard-certificate-multiple-level-subdomains/

Now, to create a subdivision within blog.yourdomain.com, you would generate a CSR with the format *.blog.yourdomain.com in place of the FQDM. Here the asterisk is substituting all the potential second-level subdomains of the “blog” subdomain.

Wildcard is placed in subdomain level. D is 3 levels deep

Answer: A. HTTPS://*.comptia.org, Valid from April 10 00:00:00 2021 - April 8 12:00:00 2022. The question asks for the secondary subdomain. If the the domain is comptia.org then the SECONDARY subdomain would be the wildcard in HTTPS://*.comptia.org. In Answer C the domain goes three levels deep HTTPS://*.app1.comptia.org. And in D , Although the wildcard placement is correct the dates are two years instead of 1 year.

Clearly is C, end of story.

C should be correct because its for secondary or second level

D. HTTPS://*.comptia.org, Valid from April 10 00:00:00 2021 - April 8 12:00:00 2023