• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Issue SSL error when main domain has been changed

Brian-Dmac

Brian-Dmac

New Pleskian
Hi,

I'm having an issue with an SSL not applying to a standalone domain. Initially the subscription was setup with domain A, but then changed to domain B. We added domain A as an alias but ran into issues with SSL certificates only applying to Domain B. I deleted the alias and added Domain A as a standalone domain with it's own SSL cert, however the SSL certificate for domain B is still applying. All of the settings in plesk look correct and I have tried rebuilding configuration files but domain A still throws up a warning saying the SSL is only valid for domain B

Any ideas?

B
 
Based on your post it isn't entirely clear to me how you've exactly setup those domains (and how they relate to each other) in your current configuration. In general however, when you add an alias to an existing domain you'd have to re-issue the certificate to include the domain alias in the certificate too. If you're using Let's Encrypt certificates you can re-issues the certificate in Plesk. If got your certificate somewhere else you have re-issue the certificate with the certificate provider.

If you have now setup these two domains separately in Plesk, you also have need to issue two separate certificates (one for each domain). If you use Let's Encrypt you can do so via Plesk. Otherwise refer to you certificate provider. If you already have issued two separate certificates (one for each domain), but certificate for domain B is used domain A, you might want to check if the right certificate is selected in the Hosting Settings of the domain.
 
Hi Kaspar, thanks for the reply

Domain A is the main domain on the subscription and has an SSL with the correct common name.
Domain B is an additional domain on the same subscription with it's own SSL with the correct common name.
When I visit Domain B I get an warning saying the cert is only valid for Domain A - this is persistent on multiple machines across different networks.
I've checked the conf files on the server and both domains reference separate certificate files on the server and I parsed the certificate file for Domain B and it is correct.
Even when I view the SSL manager for Domain B in Plesk it shows a green tick and "Secured" beside the domain

I've managed to workaround the issue for now by removing Domain B from the subscription and adding it as a new subscription with forwarding to Domain A. The server is now serving up the correct SSL cert but having the extra subscription is not ideal.

I think the issue is related to the changing of the subscription domain (as mentioned, initially the client wanted Domain B but changed to Domain A with B as an alias) as I know in the past it was not recommended to do this. At one point there was only one SSL which only covered Domain A and it seems as though there is a conf file which hasn't updated or config which has been cached. I've restarted all services but have not tried a full reboot as there are a lot of sites hosted and that would need to be scheduled

it's puzzling!
 
You must log in or register to reply here.

Similar threads

G J Piper
Resolved SSL It! Let's Encrypt Not Issuing Certificate on MX-only Domain
Replies
8
Views
512
G J Piper
G J Piper
N
Issue Plesk Hostingpanel SSL Certificate Appearing in SSL Test for My Domain
Replies
4
Views
662
learning_curve
learning_curve
Polli
Issue Mails only possible with a wildcard certificate
Replies
5
Views
483
Polli
Polli
L
Issue When Mail Domain SSL Renews The Cert Reverts To domain.tld
Replies
5
Views
1K
Ladylinux
L
Hangover2
Resolved SSL It! Extension Generates Incorrect Links for Additional Domains
Replies
2
Views
954
Sebahat.hadzhi
Sebahat.hadzhi
Back
Top