Home » Categories » Multiple Categories

SSL Certificate does not validate properly

Issue:

The SSL certificate won't validate properly because the certificate didn't include any subject alternative names. Adding SAN (Subject Alternative Name” into “Additional Attributes” field on a Microsoft Certificate Authority certificate request form does not generate a certificate with a SAN entry.

Solution:

Solution 1

Please review the this article that describes the problem and solution. Essentially, you must run a script to correct the issue that the issuance policy of the Microsoft CA is not configured to accept the Subject Alternative Name(s) attribute via the CA Web enrollment page.

Then, when using the web certsrv, add this under the attributes:

san:dns=your.fqdn.xxx

Solution 2

Another possible solution is to pass the config file below (include your information) to openssl.

[ req ]
default_bits = 2048
prompt = no
distinguished_name = req_distinguished_name
req_extensions = req_ext
[ req_distinguished_name ]
countryName = US
stateOrProvinceName = XXXX
localityName = XXXX
organizationName = XXXXXXX
commonName = your.fqdn.com
[ req_ext ]
subjectAltName = @alt_names
[ alt_names ]
DNS.1 = your.fqdn.com

Then, this when doing the CSR (Certificate Signing Request):

openssl req -new -key nagiosxi.key -out nagiosxi.csr -config thefile


Special Offer For Knowledgebase Visitors! Get a huge discount on Nagios Log Server by clicking below.

Get 60% Off Nagios Log Server!

Did you know? Nagios provides complete monitoring of: Windows, Linux, UNIX, Servers, Websites, SNMP, DHCP, DNS, Email, Storage, Files, Apache, IIS, EC2, and more!

0 (0)
Article Rating (No Votes)
Rate this article
  • Icon PDFExport to PDF
  • Icon MS-WordExport to MS Word
Attachments Attachments
There are no attachments for this article.
Related Articles RSS Feed
Nagios XI - NSP: Sorry Dave, I can’t let you do that
Viewed 22981 times since Tue, Jan 27, 2015
Nagios XI - Best Practices - NWC15
Viewed 8849 times since Thu, Feb 4, 2016
Nagios XI - Configuration Applies, No Changes Take Place
Viewed 8707 times since Tue, Jan 27, 2015
Nagios XI - Core 4 Load Spikes on 1.75 and 7 Hour Intervals
Viewed 4875 times since Mon, Jan 25, 2016
Active Directory / LDAP - Troubleshooting Authentication Integration
Viewed 19850 times since Mon, Jun 26, 2017
Nagios XI - Configuration Applies, but still get "Configuration File Is Out Of Date" Error
Viewed 5407 times since Tue, Jan 26, 2016
Nagios XI - Can’t Log Into The Web Interface
Viewed 63976 times since Tue, Jan 27, 2015
Turning Off PHP Notices and Deprecated Messages
Viewed 4485 times since Wed, Oct 20, 2021
Nagios XI - CentOS 6 Installation Problems XI 2011R1.7 2011R1.8
Viewed 5226 times since Tue, Feb 2, 2016
Nagios XI - Profile Build Failed
Viewed 13639 times since Tue, Aug 2, 2016