Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
Hello everyone, I have a little problem with my certs. I have a main cert ok with certs attached because they are on my server. But when I display the information of the owner in a browser, it is not my " master-domain " that appears as owner but a sub-cert! how can I fix that? Thank you
Your www version uses the same certificate, but the certificate doesn't have the www domain name. So your www version isn't secure. That's something you should change.
Hello Juergen, thank you for your help ... So I had to do something wrong, because I have a vhost per domain configured on the machine. I had to use the CertBot command to "extend" the list of domains and not to create a cert per domain. What do you think?
Each time that you run Certbot, it creates one certificate. However, it might potentially install that same certificate into multiple Apache virtualhost configurations.
So if you use certbot -d example.com -d example.net, you get one certificate that covers both names, but which could then be installed into the two separate virtualhosts for example.com and example.net (assuming that two separate virtualhosts exist in your Apache configuration).
If you want to get separate certificates where the individual names are on individual certificates, you would need to run Certbot once per name:
Both is possible. One certificate with different domains (Cloudflare creates certificates with 30 - 50 domain names - non-www and www) and one certificate per domain (non-www and www, perhaps some subdomains).
First version -> the CN doesn't match
Second version -> CN = domain name