Net::err_cert_common_name_invalid

allans · May 17, 2019, 9:41am

My domain is:wpmss.com

I ran this command:GET https://flyharmony.wpmss-multisite.com/wp-content/uploads/sites/12/2018/02/cropped-FlyHarmony-32x32.jpg

It produced this output:net::ERR_CERT_COMMON_NAME_INVALID

My web server is (include version):Apache

The operating system my web server runs on is (include version):debian 9+

My hosting provider, if applicable, is:google cloud

I can login to a root shell on my machine (yes or no, or I don’t know):yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):certbot 0.28.0

JuergenAuer · May 17, 2019, 9:49am

Hi @allans

you have created a certificate with both domain names ( https://check-your-website.server-daten.de/?q=wpmss.com ):

CN=wpmss.com
	15.05.2019
	13.08.2019
expires in 88 days	
wpmss.com, www.wpmss.com - 2 entries

But only your non-www version uses that certificate, not your www version.

Domainname	Http-Status	redirect	Sec.	G
• http://wpmss.com/
35.198.176.205	301	https://wpmss.com/	0.144	A

• http://www.wpmss.com/
35.198.176.205	301	https://www.wpmss.com/	0.067	A

• https://www.wpmss.com/
35.198.176.205	301	https://wpmss.wpmss-multisite.com/	0.310	N
Certificate error: RemoteCertificateNameMismatch

• https://wpmss.com/
35.198.176.205	200		0.637	I

• https://wpmss.wpmss-multisite.com/	200		0.454	N
Certificate error: RemoteCertificateNameMismatch

And you have a redirect to another domain, there is the certificate wrong.

Looks like your vHost doesn't have a ServerAlias www-yourdomain.

What says

apachectl -S

allans · May 17, 2019, 11:41am

unfortunately we are not using apachectl, apaache log is normal, no errors
we fixed alias or www issue
why are we getting the redirect 200
wpmss.com is having redirect becuase of wp multisite
multisite main domain has its own certificate though, which we expanded to include subdomains as well? Should be fine though

allans · May 17, 2019, 11:57am

the same applies to the main site, certificate is valid and existing but the …daten.de says https://www.wpmss-multisite.com/ 35.198.176.205
200

Error - Certificate isn’t trusted, RemoteCertificateNameMismatch

JuergenAuer · May 17, 2019, 1:38pm

Now there is a new check - https://check-your-website.server-daten.de/?q=wpmss.com - created 17.05.2019 13:37:20.

Now the certificate doesn't have the www version, instead the other domain:

CN=wpmss.com
	17.05.2019
	15.08.2019
expires in 90 days	
wpmss.com, wpmss.wpmss-multisite.com - 2 entries

You have it defined. Or the wrong vHost is used.

Please:

What says

apachectl -S

First you should fix your vHost configuration then you should fix your certificates. Then the redirects.

system · June 16, 2019, 1:38pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.