Please keep replies on the list.
Is it meant that i cannot use def.abc.net <http://def.abc.net> cert for
the host def.abc.com <http://def.abc.com> ???
only i can used is same as hostname and domain ...or wildcard *.abc,com ?
For now yes. Eventually we may be able to use SNI to use certificates
with multiple names but we aren't there yet.
2014-04-11 20:47 GMT+08:00 Rob Crittenden <rcrit...@redhat.com
barry...@gmail.com <mailto:barry...@gmail.com> wrote:
I added *.abc.net <http://abc.net> <http://abc.net> cet to
certutil -d /etc/httpd/alias
But error comes out after when i login the UI of service and
cick in entry .
cannot connect to
(SSL_ERROR_BAD_CERT_DOMAIN) Unable to communicate securely with
requested domain name does not match the server's certificate.
This is the SSL MITM protection. The subject of the certificate on
the server needs to match the hostname that the client is requesting.
You can't just change the domain name of your installation by
replacing the certificates.
Freeipa-users mailing list