ssl wildcard子域名www.sub.domain.com [英] ssl wildcard sub domain www.sub.domain.com
本文介绍了ssl wildcard子域名www.sub.domain.com的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
我为* .domain.com寻求通配证ssl证书。
我使用:
I've purshase a wildcard ssl certificat for *.domain.com. I use:
- ssl certificat的startssl提供程序
- Apache VirtualHost
我希望每个请求都被重定向到HTTPS NO-WWW
I want every request to be redirected to HTTPS NO-WWW
我设法这样做:
- http ://sub.domain.com => https ://domain.com没问题
- http :// www .sub.domain.com => https ://sub.domain.com没问题
- http://sub.domain.com => https://domain.com is ok
- http://www.sub.domain.com => https://sub.domain.com is ok
但是
https ://www.sub.domain.com => https ://domain.com不行(NET :: ERR_CERT_COMMON_NAME_INVALID)
https://www.sub.domain.com => https://domain.com is NOT OK (NET::ERR_CERT_COMMON_NAME_INVALID)
你能帮助我吗?
<VirtualHost *:80>
ServerName sub.domain.com
Redirect permanent / https://sub.domain.com
</VirtualHost>
<VirtualHost *:80>
ServerName www.sub.domain.com
Redirect permanent / https://sub.domain.com
</VirtualHost>
Listen 443
<VirtualHost *:443>
ServerAdmin mail@domain.com
ServerName sub.domain.com
ServerAlias www.sub.domain.com
DocumentRoot /home/sub.domain.com
<Directory />
Options FollowSymLinks
AllowOverride None
</Directory>
<Directory /home/sub.domain.com>
Options Indexes FollowSymLinks MultiViews
AllowOverride All
Order allow,deny
allow from all
</Directory>
SSLEngine on
SSLProtocol all -SSLv2 -SSLv3
SSLCipherSuite ALL:!DH:!EXPORT:!RC4:+HIGH:+MEDIUM:!LOW:!aNULL:!eNULL
SSLCertificateFile /etc/ssl/2__.sub.domain.com.crt
SSLCertificateKeyFile /root/sub.domain.com.key
SSLCertificateChainFile /etc/ssl/1_root_bundle.crt
</VirtualHost>
推荐答案
* .domain.com的通配符证书(首先域子域)对www.sub.domain.com(二级子域)无效。您需要* .sub.domain.com的wilcard证书。
A wildcard certificate for *.domain.com (first domain sub domain) is not valid for www.sub.domain.com (second level sub domain). You will need a wilcard certificate for *.sub.domain.com.
参见 SSL多级子域通配符
这篇关于ssl wildcard子域名www.sub.domain.com的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
查看全文