Multiple SSLs on same domain

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:
namedream.com, cheaptextbooks.com
I ran this command:
SSL Server Test: namedream.com (Powered by Qualys SSL Labs)
SSL Server Test: cheaptextbooks.com (Powered by Qualys SSL Labs)

It produced this output:
cert is not trusted
My web server is (include version):
ubuntu
The operating system my web server runs on is (include version):
apache
My hosting provider, if applicable, is:
digitalocean
I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
n/a
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
certbot 0.31.0

Please help! All my domains are showing multiple certs. The old certs still seem to be lingering. I forced renewed the certs on the domains. Then I rebooted apache and the server. But still SSLLabs gives an error. Thank you!

1 Like

Oh gosh I'm having a bad night :slight_smile:

That warning about the second cert only happens when a client does not support SNI. You must have a default server in Apache that sends out that cert.

You have a valid cert for Let's Encrypt and that shows as cert #1 and is valid. All modern browsers support SNI and will see that one so should be fine.

Are you seeing a problem with a client connecting to you or are you just puzzled by the SSL Labs display?

EDIT:
Notice the message near the top saying

This site works only in browsers with SNI support.
6 Likes