diff --git a/README.md b/README.md
index a19ad94..2a96a49 100644
--- a/README.md
+++ b/README.md
@@ -116,7 +116,7 @@ Generate a self-signed certificate which will be used by Santa clients and the s
 Add the Santa CN to your hosts file.
 
 ```
-sudo echo "127.0.0.1 santa" >> /etc/hosts
+sudo echo "127.0.0.1 moroz.local" >> /etc/hosts
 ```
 
 Add the self-signed cert to your system roots. 
@@ -131,6 +131,8 @@ The latest version of Santa is available on the GitHub repo page: https://github
 ## Configure Santa:
 You will need to provide the `SyncBaseURL` settings. See the [Santa repo](https://github.com/google/santa/blob/01df4623c7c534568ca3d310129455ff71cc3eef/Docs/deployment/configuration.md#important) for a complete guide on all the client configuration options.
 
+A likely value for local testing as in the Quickstart will be: `https://moroz.local:8080/v1/santa/`
+
 ## Start moroz:
 Assumes you have the `./server.crt` and `./server.key` files.
 
diff --git a/cmd/moroz/main.go b/cmd/moroz/main.go
index e17d08f..acab934 100644
--- a/cmd/moroz/main.go
+++ b/cmd/moroz/main.go
@@ -29,7 +29,7 @@ by using the commands below:
 
 Add the santa hostname to your hosts file.
 
-	sudo echo "127.0.0.1 santa" >> /etc/hosts
+	sudo echo "127.0.0.1 moroz.local" >> /etc/hosts
 
 And then, add the cert to roots.
 
diff --git a/tools/dev/certificate/create b/tools/dev/certificate/create
index 15acce8..e141418 100755
--- a/tools/dev/certificate/create
+++ b/tools/dev/certificate/create
@@ -2,6 +2,8 @@
 
 openssl genrsa -out server.key 2048
 openssl rsa -in server.key -out server.key
-openssl req -sha256 -new -key server.key -out server.csr -subj "/CN=santa"
-openssl x509 -req -sha256 -days 365 -in server.csr -signkey server.key -out server.crt
+openssl req -sha256 -new -key server.key -out server.csr \
+    -subj "/CN=moroz.local" \
+    -addext "subjectAltName = DNS:moroz.local" 
+openssl x509 -req -sha256 -days 365 -in server.csr -signkey server.key -out server.crt -copy_extensions=copyall
 rm -f server.csr