When the Application Workspace Server receives a request for a domain, this domain will be looked up in the virtual domain list in the database.
If a match is found, the server checks if a certificate is configured for this virtual domain:
- If there is a certificate configured, it will be selected.
- If no certificate is configured for the virtual domain, the server tries to serve the certificate that is configured on the primary zone.
If either the virtual domain or the primary zone have any certificates configured, the Application Workspace Server consults the Windows Certificate Store and tries to locate a certificate with the Friendly name LWS.
When all of the above steps fail and no certificate is found, the server serves the content over the HTTP protocol.
The Application Workspace Server uses the selected certificate regardless of whether the common name on the certificate matches the domain name.