Let's say I'm using AWS Certificate Manager to get a certificate for example.com
for use with AWS CloudFront. I can specify an alternate domain of www.example.com
and point it to another CloudFront distribution in my DNS.
But AWS Certificate Manager also allows me to specify a wildcard *.example.com
as an alternate domain, which would allow me in the future to set my DNS to route blog.example.com
to yet another CloudFront distribution if I decided I needed that.
Is there any downside to adding a wildcard domain such as *.example.com
to the AWS Certificate Manager? Does it cost more? Does it make my configuration inflexible in some way? Why wouldn't I want to always specify a wildcard *.example.com
as an alternate domain, as this gives me flexibility to add a subdomain in the future whenever I want to?