NET::ERR_CERT_COMMON_NAME_INVALID error on installing letsencrypt

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g., so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command: sudo certbot-auto --apache

It produced this output:

My web server is (include version): apache2 2.4.18

The operating system my web server runs on is (include version): Ubuntu 16.04

My hosting provider, if applicable, is: Go Daddy

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): 1.9.0
I have checked for the errors in the community, but I couldn't find anything that coul help me
After installation of the certificate I get this error

I have created the certificate for

Can someone helpme with this?



Output produced:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache

Which names would you like to activate HTTPS for?


Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel): 1
Obtaining a new certificate
Created an SSL vhost at /etc/apache2/sites-available/000-default-le-ssl.conf
Deploying Certificate to VirtualHost /etc/apache2/sites-available/000-default-le-ssl.conf
Enabling available site: /etc/apache2/sites-available/000-default-le-ssl.conf
Redirecting vhost in /etc/apache2/sites-enabled/000-default.conf to ssl vhost in /etc/apache2/sites-available/000-default-le-ssl.conf

Congratulations! You have successfully enabled


  • Congratulations! Your certificate and chain have been saved at:
    Your key file has been saved at:
    Your cert will expire on 2021-01-24. To obtain a new or tweaked
    version of this certificate in the future, simply run certbot-auto
    again with the "certonly" option. To non-interactively renew all
    of your certificates, run "certbot-auto renew"

  • If you like Certbot, please consider supporting our work by:

    Donating to ISRG / Let's Encrypt:
    Donating to EFF:

Shows certificate installed successfully

1 Like

Hi @sujathaupadhyaaya

your configuration is wrong. More specific: There is a wrong redirect to an ip address, that can't work.


Your certificate is new and used:
expires in 90 days - 1 entry

But you have fatal redirects:

Domainname Http-Status redirect Sec. G 302 0.390 GZip used - 12341 / 93685 - 86,83 % 200 Html is minified: 147,51 % 0.717 H 302 5.343 B GZip used - 12327 / 93803 - 86,86 % Inline-JavaScript (∑/total): 9/3027 Inline-CSS (∑/total): 0/0 200 Html is minified: 147,45 % 5.610 N
Certificate error: RemoteCertificateNameMismatch

Your certificate doesn't have an ip address, so the result is always invalid.

But that's not a problem of your certificate, that's a general problem of that configuration.

Why is there such a redirect? A content management system?

1 Like

@JuergenAuer Thank you so very much.. My application was redirecting to ip address. I was able to fix this..Thanks a lot!

Best Regards,


I'm curious why this www exists and if you are using it?
If not, you might want to remove it from your configs.
If so, you might want to include it in the cert (choose "1,2" instead of just "1").

READERS: Get involved. Be heard. Do your part, it starts with: If you read something you like; then like it :heart: !

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.