[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

Server Name Doesn't Match Certificate Error in Windows Apache 2.2

Posted on 2011-03-14
5
Medium Priority
?
704 Views
Last Modified: 2012-05-11
We are setting up an apache reverse proxy w/ ssl.  We have the reverse proxy working w/o ssl.  Need it working with ssl.  Created a certificate w/ the CN=proxy.domain.com where domain is replaced by our domain name.  We have servername and namevirtualhost commands setup to support proxy.domain.com.  Getting an error in the logs, the cipproxy.localhost-error.log file =
[Mon Mar 14 07:41:26 2011] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Mon Mar 14 07:41:26 2011] [warn] RSA server certificate CommonName (CN) `proxy.dmain.com' does NOT match server name!?
I undertsand the first line to relate to the fact we are using a self-cert.  The second line is the issue. Can anyone shed some light, remember this is a windows version of apache run on a 2k3 server box.  I can post partial configs if needed
Thanks.
0
Comment
Question by:jtmoske
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 9

Expert Comment

by:fcontrepois
ID: 35139494
Every certificate must have the domain name as it's CN field.

One certificate per domain, unless you use e wildcard domain like *.mydomain.com
0
 

Author Comment

by:jtmoske
ID: 35139538
Thank you for the response, isn't that what I have the CN=proxy.domain.com where domain.com is the domain is our actual domain.
0
 
LVL 9

Accepted Solution

by:
fcontrepois earned 1000 total points
ID: 35139606
if your virtualhost is called proxy.domain.com apache will be happy.

Create a new certificate and put the domain name that's called by clients OR
create a new certificate with cn=*.domain.com
0
 

Author Comment

by:jtmoske
ID: 35139823
That is where my issue is.  I do have the virtualhost called proxy.domain.com.  But I still get the error.  I can also try to make a cert with *.domain.com.  Will follow up.
0
 

Author Closing Comment

by:jtmoske
ID: 35140814
Thank you, I found the error in the config file, there was another entry with server name command later in the file.  Removed that and went well.
0

Featured Post

Tech or Treat!

Submit an article about your scariest tech experience—and the solution—and you’ll be automatically entered to win one of 4 fantastic tech gadgets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …
Suggested Courses

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question