ssl wildcard子域名www.sub.domain.com [英] ssl wildcard sub domain www.sub.domain.com

问题描述

我为* .domain.com寻求通配证ssl证书。
我使用：

I've purshase a wildcard ssl certificat for *.domain.com. I use:

• ssl certificat的startssl提供程序


• Apache VirtualHost

我希望每个请求都被重定向到HTTPS NO-WWW

I want every request to be redirected to HTTPS NO-WWW

我设法这样做：

• http ：//sub.domain.com => https ：//domain.com没问题


• http ：// www .sub.domain.com => https ：//sub.domain.com没问题

• http://sub.domain.com => https://domain.com is ok
• http://www.sub.domain.com => https://sub.domain.com is ok

但是

https ：//www.sub.domain.com => https ：//domain.com不行（NET :: ERR_CERT_COMMON_NAME_INVALID）

https://www.sub.domain.com => https://domain.com is NOT OK (NET::ERR_CERT_COMMON_NAME_INVALID)

你能帮助我吗？

<VirtualHost *:80>
 ServerName sub.domain.com
 Redirect permanent / https://sub.domain.com
</VirtualHost>
<VirtualHost *:80>
 ServerName www.sub.domain.com
 Redirect permanent / https://sub.domain.com
</VirtualHost>
Listen 443
<VirtualHost *:443>
 ServerAdmin mail@domain.com
 ServerName sub.domain.com
 ServerAlias www.sub.domain.com
 DocumentRoot  /home/sub.domain.com
 <Directory />
  Options FollowSymLinks
  AllowOverride None
 </Directory>
 <Directory  /home/sub.domain.com>
  Options Indexes FollowSymLinks MultiViews
  AllowOverride All
  Order allow,deny
  allow from all
 </Directory>
 SSLEngine on
 SSLProtocol all -SSLv2 -SSLv3
 SSLCipherSuite ALL:!DH:!EXPORT:!RC4:+HIGH:+MEDIUM:!LOW:!aNULL:!eNULL
 SSLCertificateFile   /etc/ssl/2__.sub.domain.com.crt
 SSLCertificateKeyFile  /root/sub.domain.com.key
 SSLCertificateChainFile    /etc/ssl/1_root_bundle.crt 
</VirtualHost>

推荐答案

* .domain.com的通配符证书（首先域子域）对www.sub.domain.com（二级子域）无效。您需要* .sub.domain.com的wilcard证书。

A wildcard certificate for *.domain.com (first domain sub domain) is not valid for www.sub.domain.com (second level sub domain). You will need a wilcard certificate for *.sub.domain.com.

参见 SSL多级子域通配符

这篇关于ssl wildcard子域名www.sub.domain.com的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！