Solved

Server Name Doesn't Match Certificate Error in Windows Apache 2.2

Posted on 2011-03-14
5
683 Views
Last Modified: 2012-05-11
We are setting up an apache reverse proxy w/ ssl.  We have the reverse proxy working w/o ssl.  Need it working with ssl.  Created a certificate w/ the CN=proxy.domain.com where domain is replaced by our domain name.  We have servername and namevirtualhost commands setup to support proxy.domain.com.  Getting an error in the logs, the cipproxy.localhost-error.log file =
[Mon Mar 14 07:41:26 2011] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Mon Mar 14 07:41:26 2011] [warn] RSA server certificate CommonName (CN) `proxy.dmain.com' does NOT match server name!?
I undertsand the first line to relate to the fact we are using a self-cert.  The second line is the issue. Can anyone shed some light, remember this is a windows version of apache run on a 2k3 server box.  I can post partial configs if needed
Thanks.
0
Comment
Question by:jtmoske
  • 3
  • 2
5 Comments
 
LVL 9

Expert Comment

by:fcontrepois
ID: 35139494
Every certificate must have the domain name as it's CN field.

One certificate per domain, unless you use e wildcard domain like *.mydomain.com
0
 

Author Comment

by:jtmoske
ID: 35139538
Thank you for the response, isn't that what I have the CN=proxy.domain.com where domain.com is the domain is our actual domain.
0
 
LVL 9

Accepted Solution

by:
fcontrepois earned 250 total points
ID: 35139606
if your virtualhost is called proxy.domain.com apache will be happy.

Create a new certificate and put the domain name that's called by clients OR
create a new certificate with cn=*.domain.com
0
 

Author Comment

by:jtmoske
ID: 35139823
That is where my issue is.  I do have the virtualhost called proxy.domain.com.  But I still get the error.  I can also try to make a cert with *.domain.com.  Will follow up.
0
 

Author Closing Comment

by:jtmoske
ID: 35140814
Thank you, I found the error in the config file, there was another entry with server name command later in the file.  Removed that and went well.
0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Over the last year I have answered a couple of basic URL rewriting questions several times so I thought I might as well have a stab at: explaining the basics, providing a few useful links and consolidating some of the most common queries into a sing…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now