• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:

    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Resolved Alias Domain www and SSL redirect

Julian-b90

New Pleskian
Hey pleskianer i hope you have a greate day.

I have a problem with alias Domains.

My Main Domain main.com
Alias alias.com

http://alias.com redirect to main.com OK
https://alias.com redirect to main.com OK
Alias | Industrial Design & Product Design Software | Autodesk redirect to main.com OK
https://www.alias.com redirect to main.com FAIL

Error with
curl: (60) SSL: no alternative certificate subject name matches target host name 'https://www.alias.com'
More details here: https://curl.haxx.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.


In the Alias Hosting Settings 301 is enable.
 
I have the same problem - is there a solution or workaround to make www.alias.com also secure by Lets Encrypt SSL? It seems that only www.domain.com; domain.com; aliasdomain.com are secured. However I have a lot of customers where we need www.aliasdomain.com also to be secured.
 
When both spellings of the alias, www- and non-www spelling, point to the same ip address of the main domain, this should not give any problems. You'll still need to check the "www" subdomain checkbox when installing the SSL certificate, but both alias spellings will be included when you want it. If there are errors, this will normally be caused by a missing or different route in DNS.
 
When both spellings of the alias, www- and non-www spelling, point to the same ip address of the main domain, this should not give any problems. You'll still need to check the "www" subdomain checkbox when installing the SSL certificate, but both alias spellings will be included when you want it. If there are errors, this will normally be caused by a missing or different route in DNS.
Does not give me the option to select www not shown
 
When you click the "Install" or "Reissue Certificate" button in your SSLIt page, you should be taken to a page where you can click the "www" checkbox for the certificate. Aliases will automatically use the same setting when aliases are included in the certificate.

However, if I remember correctly, did you not recently have another issue with SSL where SSL did not work correctly unless you downgraded a component? I'd highly recommend to contact support on that, because such a downgrade is not a standard procedure, and there could be a very general issue on your system with SSL that can cause all kinds of follow-up errors.
 
When you click the "Install" or "Reissue Certificate" button in your SSLIt page, you should be taken to a page where you can click the "www" checkbox for the certificate. Aliases will automatically use the same setting when aliases are included in the certificate.

However, if I remember correctly, did you not recently have another issue with SSL where SSL did not work correctly unless you downgraded a component? I'd highly recommend to contact support on that, because such a downgrade is not a standard procedure, and there could be a very general issue on your system with SSL that can cause all kinds of follow-up errors.
Yes in fact in order to generate the certificate I had to downgrade, this could be the problem. Thanks
 
When you click the "Install" or "Reissue Certificate" button in your SSLIt page, you should be taken to a page where you can click the "www" checkbox for the certificate. Aliases will automatically use the same setting when aliases are included in the certificate.

However, if I remember correctly, did you not recently have another issue with SSL where SSL did not work correctly unless you downgraded a component? I'd highly recommend to contact support on that, because such a downgrade is not a standard procedure, and there could be a very general issue on your system with SSL that can cause all kinds of follow-up errors.
On alias does not give me the possibility to choose the www
 

Attachments

  • Screenshot_13.png
    Screenshot_13.png
    129 KB · Views: 5
On alias does not give me the possibility to choose the www
Thats correct. As @Peter Debik stated "Aliases will automatically use the same setting when aliases are included in the certificate." Meaning that if the WWW option is checked for the primary domain the WWW option is also included for the alias.
 
Last edited:
Thats correct. As @Peter Debik stated "Aliases will automatically use the same setting when aliases are included in the certificate." Meaning that if the WWW option is check for the primary domain the WWW option is also included for the alias.
This happens to me
 

Attachments

  • no-www.png
    no-www.png
    58.6 KB · Views: 6
  • www.png
    www.png
    109.4 KB · Views: 5
Should I activate this option?
Synchronize DNS zone with the primary domainThis DNS server acts as a master name server for this DNS zone.
Unless you have a good reason to have the Synchronize DNS option disabled, it is best to have it enabled for the alias. As that would synchronize the DNS of the domain alias with the primary domain.

Did you also double check (to be absolutely certain) that the WWW dns records points to the IP address of the correct server? And not perhaps (maybe incidentally) to another IP address?
 
A meno che tu non abbia una buona ragione per disabilitare l'opzione Sincronizza DNS, è meglio averla abilitata per l'alias. Poiché ciò sincronizzerebbe il DNS dell'alias di dominio con il dominio primario.

Hai anche ricontrollato (per essere assolutamente certo) che i record DNS del WWW puntino all'indirizzo IP del server corretto? E non forse (forse incidentalmente) a un altro indirizzo IP?
I didn’t synchronize the DNS because the . comMX tag points to G-Suite. However, they point to the www
 
This is the answer when I put the www

The connection is not private
Malicious users may attempt to steal information from www.example.com (e.g., passwords, messages, or credit cards). More information
NET::ERR_CERT_COMMON_NAME_INVALID
 
I didn’t synchronize the DNS because the . com MX tag points to G-Suite. However, they point to the www
That makes sense.

If you login to Plesk and go to your domain, then go to "SSL/TLS Certificates" and click the Reissue Certificate button to install a new Certificate, to you get an error when you reissue the certificate? Or no error when installing a new certificate?
 
That makes sense.

If you login to Plesk and go to your domain, then go to "SSL/TLS Certificates" and click the Reissue Certificate button to install a new Certificate, to you get an error when you reissue the certificate? Or no error when installing a new certificate?
Generating a new certificate does not give me any error, everything is successful. However, I solved it by creating a CNAME with the WWW and an A with server IP and using the original NS of the DOMAIN provider.
 
Back
Top