• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Resolved Alias Domain www and SSL redirect

J

Julian-b90

New Pleskian
Hey pleskianer i hope you have a greate day.

I have a problem with alias Domains.

My Main Domain main.com
Alias alias.com

http://alias.com redirect to main.com OK
https://alias.com redirect to main.com OK
Alias | Industrial Design & Product Design Software | Autodesk redirect to main.com OK
https://www.alias.com redirect to main.com FAIL

Error with
curl: (60) SSL: no alternative certificate subject name matches target host name 'https://www.alias.com'
More details here: https://curl.haxx.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.


In the Alias Hosting Settings 301 is enable.
 
I have the same problem - is there a solution or workaround to make www.alias.com also secure by Lets Encrypt SSL? It seems that only www.domain.com; domain.com; aliasdomain.com are secured. However I have a lot of customers where we need www.aliasdomain.com also to be secured.
 
When both spellings of the alias, www- and non-www spelling, point to the same ip address of the main domain, this should not give any problems. You'll still need to check the "www" subdomain checkbox when installing the SSL certificate, but both alias spellings will be included when you want it. If there are errors, this will normally be caused by a missing or different route in DNS.
 
Peter Debik said:
When both spellings of the alias, www- and non-www spelling, point to the same ip address of the main domain, this should not give any problems. You'll still need to check the "www" subdomain checkbox when installing the SSL certificate, but both alias spellings will be included when you want it. If there are errors, this will normally be caused by a missing or different route in DNS.
Click to expand...
Does not give me the option to select www not shown
 
When you click the "Install" or "Reissue Certificate" button in your SSLIt page, you should be taken to a page where you can click the "www" checkbox for the certificate. Aliases will automatically use the same setting when aliases are included in the certificate.

However, if I remember correctly, did you not recently have another issue with SSL where SSL did not work correctly unless you downgraded a component? I'd highly recommend to contact support on that, because such a downgrade is not a standard procedure, and there could be a very general issue on your system with SSL that can cause all kinds of follow-up errors.
 
Peter Debik said:
When you click the "Install" or "Reissue Certificate" button in your SSLIt page, you should be taken to a page where you can click the "www" checkbox for the certificate. Aliases will automatically use the same setting when aliases are included in the certificate.

However, if I remember correctly, did you not recently have another issue with SSL where SSL did not work correctly unless you downgraded a component? I'd highly recommend to contact support on that, because such a downgrade is not a standard procedure, and there could be a very general issue on your system with SSL that can cause all kinds of follow-up errors.
Click to expand...
Yes in fact in order to generate the certificate I had to downgrade, this could be the problem. Thanks
 
Peter Debik said:
When you click the "Install" or "Reissue Certificate" button in your SSLIt page, you should be taken to a page where you can click the "www" checkbox for the certificate. Aliases will automatically use the same setting when aliases are included in the certificate.

However, if I remember correctly, did you not recently have another issue with SSL where SSL did not work correctly unless you downgraded a component? I'd highly recommend to contact support on that, because such a downgrade is not a standard procedure, and there could be a very general issue on your system with SSL that can cause all kinds of follow-up errors.
Click to expand...
On alias does not give me the possibility to choose the www
 

Attachments

  • Screenshot_13.png
    Screenshot_13.png
    129 KB · Views: 4
MaxMauri said:
On alias does not give me the possibility to choose the www
Click to expand...
Thats correct. As @Peter Debik stated "Aliases will automatically use the same setting when aliases are included in the certificate." Meaning that if the WWW option is checked for the primary domain the WWW option is also included for the alias.
 
Last edited:
Kaspar said:
Thats correct. As @Peter Debik stated "Aliases will automatically use the same setting when aliases are included in the certificate." Meaning that if the WWW option is check for the primary domain the WWW option is also included for the alias.
Click to expand...
This happens to me
 

Attachments

  • no-www.png
    no-www.png
    58.6 KB · Views: 6
  • www.png
    www.png
    109.4 KB · Views: 5
MaxMauri said:
Should I activate this option?
Synchronize DNS zone with the primary domainThis DNS server acts as a master name server for this DNS zone.
Click to expand...
Unless you have a good reason to have the Synchronize DNS option disabled, it is best to have it enabled for the alias. As that would synchronize the DNS of the domain alias with the primary domain.

Did you also double check (to be absolutely certain) that the WWW dns records points to the IP address of the correct server? And not perhaps (maybe incidentally) to another IP address?
 
Kaspar said:
A meno che tu non abbia una buona ragione per disabilitare l'opzione Sincronizza DNS, è meglio averla abilitata per l'alias. Poiché ciò sincronizzerebbe il DNS dell'alias di dominio con il dominio primario.

Hai anche ricontrollato (per essere assolutamente certo) che i record DNS del WWW puntino all'indirizzo IP del server corretto? E non forse (forse incidentalmente) a un altro indirizzo IP?
Click to expand...
I didn’t synchronize the DNS because the . comMX tag points to G-Suite. However, they point to the www
 
This is the answer when I put the www

The connection is not private
Malicious users may attempt to steal information from www.example.com (e.g., passwords, messages, or credit cards). More information
NET::ERR_CERT_COMMON_NAME_INVALID
 
MaxMauri said:
I didn’t synchronize the DNS because the . com MX tag points to G-Suite. However, they point to the www
Click to expand...
That makes sense.

If you login to Plesk and go to your domain, then go to "SSL/TLS Certificates" and click the Reissue Certificate button to install a new Certificate, to you get an error when you reissue the certificate? Or no error when installing a new certificate?
 
Kaspar said:
That makes sense.

If you login to Plesk and go to your domain, then go to "SSL/TLS Certificates" and click the Reissue Certificate button to install a new Certificate, to you get an error when you reissue the certificate? Or no error when installing a new certificate?
Click to expand...
Generating a new certificate does not give me any error, everything is successful. However, I solved it by creating a CNAME with the WWW and an A with server IP and using the original NS of the DOMAIN provider.
 
You must log in or register to reply here.

Similar threads

M
Question domain alias and wildcard ssl certificate
Replies
0
Views
579
Maik20Tomcat
M
mulderj
Question How can I disable the www-prefix for one domain?
Replies
2
Views
771
mulderj
mulderj
I
Resolved Redirect non-www to www subdomain
Replies
1
Views
2K
imartin83
I
VojinP
Issue Alias domain without redirection cannot be with www prefix
Replies
1
Views
835
SteveM
S
M
Issue Web Statistics SSL/TLS File not found.
Replies
4
Views
3K
Manfred Beck
M
Back
Top