We have installed a dedicated SSL certificate (our web host did on our shared web site) for our www.domainname.org
. When folks visit https://www.domainname.org
they view the site in secure mode no problem.
BUT - there are some google links to our site that link to https://domainname.org
(without the www prefix). When users click on that link, they get a security warning from their browser stating that the site was set up for www.domainname.org
Why is this happening? I understand that the common name assigned to an SSL means that is the specific address that it is for. But I am able to go to my own local web server where I installed a dedicated SSL and I can go to either https://www.mydomain.com or https://mydomain.com and I don't get a security warning.
Why do users clicking on the google link get the security error, but I don't when I go to my local site in SSl mode? Is it because they are clicking on a link, vs. my manually typing it in my browser? That is the only difference I can make out.