Separated Certs Issue for same Domain (Different Sub Domains)


#1

Hi all,

I have 3 domains whitelisted:

xxx.com
www.xxx.com
a.xxx.com

And I requested a cert for “xxx.com” and “www.xxx.com”; Then I request a new cert for “a.xxx.com” separately. And my /etc/letsencrypt/renewal

/etc/letsencrypt/renewal
├── xxx.com.conf
└── a.xxx.com.conf

After I setup the cert for “a.xxx.com”, the “HTTPS” icon in Chrome doesn’t become GREEN. It says “Server’s certificate does not match the URL”.

a.xxx.com share the same IP with xxx.com. Is this an issue?

Does anyone know more information about this case. Thanks.


#2

Hi!
What’s your website’s URL? I would like to check it ssllabs to check if there is any chain issue.

(edit:

No, I’m doing exactly the same setup with my website, no problem. (note: I used the same cert for the three domains))


#3

Do you provide the right certificates for each host? Did you accidentally override a global setting instead of a vhost’s setting?


#6

Sorry guys. It turns out that I have missed this line in my Nginx config file for this subdomain:

listen 443 ssl;

Everything works fine after adding it. Sorry for this :slight_smile: