https  ssl certificate problem

Posted on 2004-04-09
Medium Priority
Last Modified: 2013-12-04
Our domain www.ourdomain.com has a security certificate registered to www.ourdomain.com.  Many of our customers just type in https://ourdomain.com.  When that happens they get a security message and many customers fall off at that point.  Do we need to get a new security certificate that references just ourdomain.com or is the another work around?

Question by:KenHammett

Expert Comment

ID: 10795574
From my experience (getting SSL certs from carriers like Verisign), design the certs from the child domain. So, a SSL cert for http://www.ourdomain.com is DIFFERENT than a SSL cert for http://ourdomain.com
If the SSL cert is for http://www.ourdomain.com and you go to http://ourdomain.com, then you will get a SSL error. The cert is for http://www.ourdomain.com, and has that FQDN defined in it.
If you just go to http://ourdomain.com, then the SSL cert for http://www.ourdomain.com since that is, technically, a CHILD domain.

So, AFAIU, you need a SSL cert for https://www.ourdomain.com to avoid SSL cert errors.

Accepted Solution

mikkelp earned 750 total points
ID: 10800699
I don't know what would happen, if you define a subdomain called www and insert multiple hosts.. ie. host1.www.yourdomain.com (I thought a cert was server-specific, not subdomain).

problem is dns.. Your webserver is probably the only server defined in your dns-record, so all trafic is routed to that.. The webserver is defined to answer to both www.yourdomain.com and yourdomain.com. I suggest setting up a separate website for yourdomain.com and redirecting traffic to www.yourdomain.com.. It's a neet way to avoid problems, and maybe in time your customers learn to use the proper address :-)

Or if you plan to expand your domain:
What you need is a *.yourdomain.com certificate, called a "shared certificate" or "Wildcard-certificate". Then you can put up as many servers as you like ... but usually shared certificates are somewhat more expensive than "regular" ones.


Featured Post

Managed Security Services Webinar - March 15

Selecting the right managed security services platform to grow your business can be a huge undertaking. Join WatchGuard and Frost & Sullivan in an upcoming webinar as we dive into the key elements of selecting a vendor platform and partnership to fuel a successful MSSP business.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Ransomware - Defeated! Client opened the wrong email and was attacked by Ransomware. I was able to use file recovery utilities to find shadow copies of the encrypted files and make a complete recovery.
An Incident response plan is an organized approach to addressing and managing an incident. The goal is to handle the situation in a way that limits damage and reduces recovery time and costs.
Viewers will get an overview of the benefits and risks of using Bitcoin to accept payments. What Bitcoin is: Legality: Risks: Benefits: Which businesses are best suited?: Other things you should know: How to get started:
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

597 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question