I got "this connection is not private" error on IOS only

My domain is:

I ran this command:
New-AcmeIdentifier to create multi domain ssl certificate
It produced this output:

My web server is (include version):
Windows with IIS

the ssl certificate works well on all browsers and devices
except iphone ios, there i got “this connection is not private” error message
Any suggestions what can make it happen?

On your iOS device, you are probably trying to visit https://qawobily.co.il/ (notice the lack of www.).

That domain won’t work on any device at all, because you only included the www version of your domain on the certificate.

This is very strange…
i do redirect on my server to www sub domain
and it works well in other browsers
why this behavior is not the same on IOS?

No, it doesn't. If you click this link in any desktop browser (without any kind of cache), it will fail: https://qawobily.co.il/

The problem is that in order to send a redirect, you need to have a valid SSL connection already. In order to have that, the certificate needs to be valid for the first URL being visited.

So you should add that extra name to your certificate.

If you want, you can also adjust your HTTPS redirect to also ensure that the www subdomain is added, because currently it doesn’t:

$ curl -i qawobily.co.il
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Transfer-Encoding: chunked
Location: https://qawobily.co.il/

Probably users who run into this problem are using Chrome, which has a special case that considers this valid (!) even though it's not valid according to Internet standards. So you might want to say "any desktop browser (other than Chrome)" here. :frowning:

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.