Cisco NAC Appliance and Wildcard SSL Certificates

The Cisco NAC Appliance 4.1.6 Server Configuration guide clearly states that wildcard SSL certificates are not supported. Below is the associated text that is also a link to the section in the guide

Cisco NAC Appliance does not support "wildcard" certificates.

What is not stated is exactly why this is the case. On the Miami of Ohio mailing list, Nate Austin, provided more detailed information about why wildcard certificates are not supported

Theres actually a valid reason. The client pulls the redirection information out of the certificate Common Name. So if the CN is *.domain.com, it will try to redirect you to that and obviously fail.

I have never personally tried it where the SAN in the cert was the cas name, so I don't know if we can pull the name from there as well, but my instinct says probably not.