#61718 closed enhancement (fixed)
Add subject alternative names for guide certificate
| Reported by: | ryandesign (Ryan Carsten Schmidt) | Owned by: | neverpanic (Clemens Lang) |
|---|---|---|---|
| Priority: | Normal | Milestone: | |
| Component: | server/hosting | Version: | |
| Keywords: | Cc: | ||
| Port: |
Description
I want to switch www and guide over to Braeburn today. For the guide, it looks like Braeburn isn't set up to serve certificates for our secondary domain names:
$ curl -I --resolve guide.macports.com:443:136.243.18.213 https://guide.macports.com/ curl: (60) SSL: no alternative certificate subject name matches target host name 'guide.macports.com' More details here: https://curl.haxx.se/docs/sslcerts.html curl failed to verify the legitimacy of the server and therefore could not establish a secure connection to it. To learn more about this situation and how to fix it, please visit the web page mentioned above.
$ curl -I --resolve guide.macports.net:443:136.243.18.213 https://guide.macports.net/ curl: (60) SSL: no alternative certificate subject name matches target host name 'guide.macports.net' More details here: https://curl.haxx.se/docs/sslcerts.html curl failed to verify the legitimacy of the server and therefore could not establish a secure connection to it. To learn more about this situation and how to fix it, please visit the web page mentioned above.
$ curl -I --resolve guide.darwinports.org:443:136.243.18.213 https://guide.darwinports.org/ curl: (60) SSL: no alternative certificate subject name matches target host name 'guide.darwinports.org' More details here: https://curl.haxx.se/docs/sslcerts.html curl failed to verify the legitimacy of the server and therefore could not establish a secure connection to it. To learn more about this situation and how to fix it, please visit the web page mentioned above.
Could that be added? For www, it looks like that's already in place.
Change History (5)
comment:1 Changed 3 years ago by neverpanic (Clemens Lang)
| Owner: | changed from admin@… to neverpanic |
|---|---|
| Status: | new → accepted |
comment:2 Changed 3 years ago by neverpanic (Clemens Lang)
| Resolution: | → fixed |
|---|---|
| Status: | accepted → closed |
comment:3 Changed 3 years ago by ryandesign (Ryan Carsten Schmidt)
comment:5 Changed 3 years ago by ryandesign (Ryan Carsten Schmidt)
Looks good now, thanks. I've switched the DNS CNAMEs to Braeburn.
Note: See
TracTickets for help on using
tickets.
It doesn't look like Braeburn is responding properly to these hostnames yet, but I set it up on NERV so that I could move it off of the CDN. If we can get it moved to Braeburn later that would be better.