Trying to browse https://ipaddress throws an error whereas it works perfectly for the domain


#1

Hello All,
I generated the certificate for https://bloombench.com/ and the page loads without any HTTPS error but when I try to open it by the ip address (https://52.77.178.151/) - it gives a NET::ERR_CERT_COMMON_NAME_INVALID error. Is it because the reverse DNS entries are not added ?

I also generated a separate certificate for ecs2.bloombench.com (its just a machine with no web server).

Thanks


#2

As LE do not issue certs for IP addresses you must always use the domain name to access the site.


#3

Come again?  


#4

That’s not how it works. The cert must match the literal name that the client chose to use. So even if you have CNAMEs pointing around, the cert must contain the name that the client initially chose, not a name that appears after following a CNAME or reverse resolving the IP address.

Simply don’t use the IP address directly. Why do you do that anyway?


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.