OpenFire SAN Certificate

We’re running 3.10.3 on Solaris 11 with Oracle jdk1.7.0_80.

Our instance runs on a machine called jive.x.y.com and our XMPP DNS records for y.com point to jive.x.y.com.

People configure their clients to connect to jive.x.y.com via SSL but their JIDs can be either user@y.com or user@jive.x.y.com -

does this necessitate having a cert on jive.x.y.com for OpenFire with SANs of y.com,jive.x.y.com?

It seemed to last time I installed the cert 3 years ago, it’s time to update, and I want to make sure that is still the case.

Thanks,

SG