My certifcate is al the sudden valid for another domain

JayBeeToo · June 15, 2018, 7:30pm

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: www.hussaarts.com

I ran this command: https://www.hussaarts.com

It produced this output: invalid certificate, wrong domainname, syscheck.synology.me

My web server is (include version): Apache

The operating system my web server runs on is (include version): Netgear

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no

JuergenAuer · June 15, 2018, 7:34pm

Hi @JayBeeToo

there is a correct Letsencrypt-Certificate: 2018-05-10 07:10:39 UTC

But your website doesn't use this.

JayBeeToo · June 15, 2018, 7:40pm

The issue started yesterday.
Up till then everything was fine.
When I ping syscheck.synology.me the ip adress displayed is 217.121.94.127.
The same when I ping www.hussaarts.com.
I think there is a problem with my domainname provider. I’ll check that first.

Patches · June 15, 2018, 7:50pm

You appear to have a certificate, it’s just not actually being used by Synology.

In Synology, go to Control Panel > Security > Certificate.
Select the certificate for hussarts.com and click Edit.
Select Set as default certificate and click Apply.

JayBeeToo · June 15, 2018, 7:53pm

I have a Netgear Readynas device.
Every 30+ days I renew the certificate.
In this case I think my internet provider has changed the IP adresses and my dynamic domain name service host has not changed the IP adress to my current one.

JayBeeToo · June 15, 2018, 8:04pm

That seems to be the problem. I changed it manually and have to wait know until it becomes available for the dns servers.

JuergenAuer · June 15, 2018, 8:24pm

This is not really a problem. One IP can have a lot (more then 100.000) Domains..

But I see: Now there is the Letscencrypt-Certificate active:

Not Before: May 10 06:10:39 2018 GMT
Not After : Aug 8 06:10:39 2018 GMT

JayBeeToo · June 15, 2018, 8:27pm

My server has allways used the correct certificate. The problem was that the ddns server was still referring to the old IP adress and that was know allocated to syscheck.synology.me.

Which has nothing to do with me

system · July 15, 2018, 8:42pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.