Some subcustomers may want to serve content securely using one of your Cloud Partner-managed DNS namespaces.

secure.cloudplatform.net

[sub-customer-prefix].secure.cloudplatform.net {TTL} IN CNAME
secure.cloudplatform-net.edgekey.net

secure-sub-customer-com.secure.cloudplatform.net
2358c713-a9dad7fd-f838fd35-8c85b331.secure.cloudplatform.net

secure-sub-customer-com.secure.cloudplatform.net. {TTL} IN CNAME
secure.cloudplatform.net.edgekey.net.

secure.cloudplatform-net.edgekey.net. 21600 IN CNAME
a1234.dsce16.akamai.net.

a1234.dsce16.akamai.net. 20 IN A 184.24.175.127

In this example, let's assume that you operate one or more Cloud Partner infrastructure domains where each subcustomer is given a unique prefix, for example:

{sub-customer-prefix}.secure.cloudplatform.net

To configure secure delivery, we deploy a separate certificate, in which the Common Name (CN) is a wildcard DNS name *.secure.cloudplatform.net, and the Akamai Secure Edge Hostname CNAME, secure.cloudplatform.net.edgekey.net is provisioned to ensure that the correct certificate is returned to the End-Client.

The Akamai server requires a separate DNS hostname to use as origin. The origin- prefix method works, as well as the practice of creating an origin behavior for each subcustomer as shown in the examples for Use case 1: HTTP-only, using a partner-owned DNS name.