Stack Overflow
Stack Overflow

Questions tagged [subject-alternative-name]

35 questions
0
votes
0 answers

Self signed SSL certificate: Subject Alternative Name (SAN) gets lost when signing

I have two servers in my local network that should communicate with each other via https. I am very new to the topic of SSL certificates but I have found this little gist to be quite helpful:…
Jere
  • 1,196
  • 1
  • 9
  • 31
0
votes
1 answer

Subject Alternative Names for Localhost

I am trying to connect to localhost over https so that I can use service workers. I have tried many solutions such as chrome flags as described in posts such as this, but none have worked. Finally, I used OpenSSL to make myself a certificate…
Toby
  • 45
  • 1
  • 7
0
votes
1 answer

HttpClient: Certificate for www.recaptcha.com doesn't match any of the subject alternative names

Trying to Post a http request to https://www.recaptcha.com, CloseableHttpClient client = HttpClients.createDefault(); HttpPost post = new HttpPost("https://www.recaptcha.com/recaptcha/api/siteverify"); HttpResponse response =…
eastwater
  • 4,624
  • 9
  • 49
  • 118
0
votes
1 answer

Manage Subject Alternative Name for App Service Certificate

I purchased an app service certificate and would like to manage hostname in Subject Alternative Name(SAN) but unsure how it can be edited. Goal is to secure sub-domain using same cert without purchasing new one.
Jan
  • 28
  • 4
0
votes
0 answers

Unable to reach local server configured on https port 443 with subject alternative name

I created a CA with OpenSSL and created and signed a server certificate with it. I gave three subject alternative names to the server certificate, providing its common name as the server itself (the common name for the CA and the server certificate…
Question
  • 15
  • 6
0
votes
0 answers

Python function to Create CSRs with SAN

i found the function that creates the CSRs on this thread: Generating a CSR in Python However it has no mention to how i could add SAN (SubjectAltName) to the CSR which is important for the browsers to consider the certificate generated using this…
NewToCoding
  • 1
0
votes
1 answer

How do I import and activate a SAN SSL certificate in IIS?

the scenario is the following: I created a selfsigned SAN certificate bundling different intranet-domains, hosted on different machines and OS. The certificate is working as expected when being used by apache-services on CentOS and nginx-services on…
Daniel
  • 578
  • 6
  • 18
0
votes
0 answers

Error Loading extension 'copy_extensions' in Openssl

While running the following command on Ubuntu 19.10, with OpenSSl 1.1.1c 28 May 2019: openssl req -config ${CNF_FILE} -key ${PRIVATE_FILE} -new -x509 -days 10950 -sha384 -extensions v3_ca -out ${CERT_FILE} I receive the following output: Error…
jj_inno
  • 11
  • 3
0
votes
1 answer

Can't pars subjectAlternativeNames in java

I try to parse extra data of certificate in java. I interested in subjectAlternativeNames section. My code is: CertificateFactory certFactory =…
Anton
  • 1,051
  • 1
  • 9
  • 21
0
votes
0 answers

How to get UPN from X509Certificate in java

In our web-application we are about to refine certificate authentication mechanism. We used to use CN from the certificate to get login and authenticate the user. However, requirements have changed and now we are advised to use SAN (Subject…
J Doe
  • 11
  • 1
0
votes
0 answers

Unable to authenticate server certificate due to trailing spaces

I've created a java spring-boot application that communicates with a server and sends it requests periodically. For security reasons i need to validate the certificates of the server, however there is a strange issue with the server's certificate.…
Vaan
  • 11
  • 2
0
votes
2 answers

Getting Subject Alternative Name OpenSSL

I am attempting to retrieve the subject alternative name from my client certificate. By running this command, I can see the SAN: openssl x509 -noout -text -in certname.cert.pem ... X509v3 Subject Alternative Name: IP Address:10.10.10.10 In a C…
Colin Mai
  • 15
  • 1
  • 7
0
votes
1 answer

How to extract ip address from subject_alt_name field from OpenSSL certificates using API(not openssl commands) in C

My requirement is to extract ip address from openSSL certificates using OpenSSL API functions(not openSSL primitive commands). I can use ASN1_STRING_data() to extract san field details, but how do i print the ip address from it.What is the data type…
Dynamite
  • 33
  • 7
0
votes
1 answer

lighttpd configuration - does lighttpd authenticate with an address, e.g. subjectAltNames=IP:192.168.1.20?

The following is a test setting to check if lighttpd will autheticate based on an IP address when it is included in certificate subjectAltNames, e.g. subjectAltNames=IP:192.168.1.20 Config: $HTTP["host"] == "192.168.1.20" { # Ensure the Pi-hole…
Craig Hicks
  • 2,199
  • 20
  • 35
0
votes
0 answers

Config script to generate CSR using openssl

I have a config script that I use to give default values for my CSRs, obviously just specifying the FQDN I'm wanting to use. Generally the names will be like www.example.com. However for most of my domains I also want the SAN example.com (ie no…
user3204476
  • 51
  • 5
1
2
3