Whenever I do a graceful restart, an ssl:warn message gets put in my error log that reads:
server certificate does NOT include an ID which matches the server name
I checked /etc/apache2/sites-available/000-default-le-ssl.conf and in the VirtualHost part, it has:
ServerName videochums.com
Include /etc/letsencrypt/options-ssl-apache.conf
ServerAlias www.videochums.com
SSLCertificateFile /etc/letsencrypt/live/videochums.com/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/videochums.com/privkey.pem
And when I examine my certificate in Firefox, it says:
Subject Name
Common Name videochums.com
Subject Alt Names
DNS Name videochums.com
DNS Name www.videochums.com
I don't understand why that warning comes up - it all seems to line up to me. Am I missing something? How can I resolve this warning?
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: videochums.com
I ran this command: N/A
It produced this output: N/A
My web server is (include version): Apache/2.4.53
The operating system my web server runs on is (include version): Debian 11.3
My hosting provider, if applicable, is: Google Cloud
I can login to a root shell on my machine (yes or no, or I don't know): Yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): No
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): 1.26.0