Please keep replies on the list. wrote:
Is it meant that i cannot use <> cert for
the host <> ???


only i can used is same as hostname and domain ...or wildcard *.abc,com ?

For now yes. Eventually we may be able to use SNI to use certificates with multiple names but we aren't there yet.



2014-04-11 20:47 GMT+08:00 Rob Crittenden <
<>>: <> wrote:

        Dear all:

        I added * <> <> cet to
          certutil -d /etc/httpd/alias

        and /etc/dirsrv/slapd-ABC-COM

        But error comes out after when i login the UI of service and
        cick in entry .

        cannot connect to
        <>': [Errno
        (SSL_ERROR_BAD_CERT_DOMAIN) Unable to communicate securely with
        requested domain name does not match the server's certificate.

    This is the SSL MITM protection. The subject of the certificate on
    the server needs to match the hostname that the client is requesting.

    You can't just change the domain name of your installation by
    replacing the certificates.


Freeipa-users mailing list

Reply via email to