THIS KNOWLEDGE BASE HAS BEEN ARCHIVED AND IS NO LONGER BEING UPDATED
Please visit library.nagios.com/docs for the latest and most up-to-date documentation.
All Categories
Recently Viewed
Active Directory / LDAP - Troubleshooting Authentication Integration
Home » Categories » Multiple Categories

SSL Certificate does not validate properly
Article Number: 887 | Rating: Unrated | Last Updated by rspielman on Wed, Jan 20, 2021 at 10:50 AM

Issue:

The SSL certificate won't validate properly because the certificate didn't include any subject alternative names. Adding SAN (Subject Alternative Name” into “Additional Attributes” field on a Microsoft Certificate Authority certificate request form does not generate a certificate with a SAN entry.

Solution:

Solution 1

Please review the this article that describes the problem and solution. Essentially, you must run a script to correct the issue that the issuance policy of the Microsoft CA is not configured to accept the Subject Alternative Name(s) attribute via the CA Web enrollment page.

Then, when using the web certsrv, add this under the attributes:

san:dns=your.fqdn.xxx

Solution 2

Another possible solution is to pass the config file below (include your information) to openssl.

[ req ]
default_bits = 2048
prompt = no
distinguished_name = req_distinguished_name
req_extensions = req_ext
[ req_distinguished_name ]
countryName = US
stateOrProvinceName = XXXX
localityName = XXXX
organizationName = XXXXXXX
commonName = your.fqdn.com
[ req_ext ]
subjectAltName = @alt_names
[ alt_names ]
DNS.1 = your.fqdn.com

Then, this when doing the CSR (Certificate Signing Request):

openssl req -new -key nagiosxi.key -out nagiosxi.csr -config thefile

Special Offer For Knowledgebase Visitors! Get a huge discount on Nagios Log Server by clicking below.

Get 60% Off Nagios Log Server!

Did you know? Nagios provides complete monitoring of: Windows, Linux, UNIX, Servers, Websites, SNMP, DHCP, DNS, Email, Storage, Files, Apache, IIS, EC2, and more!
Posted by: on Wed, Jan 20, 2021 at 9:38 AM. This article has been viewed 6524 times.
Filed Under: Common Problems, Troubleshooting
0 (0)
Article Rating (No Votes)
Rate this article
  • Icon PDFExport to PDF
  • Icon MS-WordExport to MS Word
Attachments Attachments
There are no attachments for this article.
Related Articles RSS Feed
Slack Notifications Stopped Working
Viewed 5747 times since Wed, Mar 18, 2020
Nagios XI - Disabling Database UTF8 Connectivity
Viewed 6233 times since Thu, Mar 8, 2018
Nagios XI - Problems with $ Signs in the Check Command
Viewed 10484 times since Tue, Jan 26, 2016
Nagios XI - Unable to Delete Host
Viewed 26061 times since Tue, Dec 16, 2014
Nagios Core - Failed to register iobroker
Viewed 8183 times since Wed, Sep 20, 2017
Upgrading to NDO 3 after having been downgraded in newer versions of Nagios XI
Viewed 5115 times since Fri, Jan 15, 2021
Nagios XI - LDAP / Active Directory - Import Users Certificate Issues
Viewed 10918 times since Tue, Jul 26, 2016
Nagios XI - Best Practices - NWC15
Viewed 9706 times since Thu, Feb 4, 2016
Nagios XI - Troubleshooting Reports
Viewed 8860 times since Wed, Dec 5, 2018
Nagios XI - NSP: Sorry Dave, I can’t let you do that
Viewed 24217 times since Tue, Jan 27, 2015
Subscribe to knowledge base
Get notified when new articles are added to the knowledge base.
Nagios