Community Tip - Fixing NET::ERR_CERT_COMMON_NAME_INVALID

CommunityTip

#1

Error
Try the suggestions in this Community Tip to help you fix NET::ERR_CERT_COMMON_NAME_INVALID.

Background
If you’re using SSL, the name of the server protected by the certificate is included as part of the certificate. For a certificate to be valid and the page to load securely, the requested hostname must match the name shown on the certificate. Your web browser will show a message when connecting to an address where the names do not match. When this happens, you’ll see “NET::ERR_CERT_COMMON_NAME_INVALID”.

Quick Fix Ideas

  1. The apex of your zone is currently grey-clouded, if you have a subdomain or hostname that serves HTTP/HTTPS traffic, orange-cloud this DNS record to take advantage of Cloudflare’s security and performance features.

  2. Check your CNAME record to see if it’s pointing to subdomain.example.com that is not covered by your certificate. Change the SSL mode to “Full” instead of “Full (strict)”.

  3. You’re seeing the issue only on a mobile device, the mobile device has cached DNS entries and isn’t hitting the actual site. Clear the mobile cache and try again.

  4. You’re using a self-signed Cloudflare orgin certificate and you’ve paused Cloudflare. A Cloudflare Origin CA Certificate is only trusted by Cloudflare and should only be used by origin servers connected to Cloudflare. If you pause or disable Cloudflare, your Origin CA certificate will throw an untrusted certificate error. To see your certificate, visit SSL Labs.

  5. There is a valid SSL certificate, but the certificate presented does not have your domain name in it. You’ll need to contact Cloudflare Support.

  6. There may be an issue with your certificate order and you’ll need to contact Cloudflare Support to have them re-order the certificate.

Lite Reading


Background Resources
Knowledge Base
YouTube

Research The Issue
Community
Google

If You Need More Help
This community of other Cloudflare users may be able to assist you, if not, login to Cloudflare and then contact Cloudflare Support. When you contact support, make sure to include as much of this information as possible: domain name, error messages, screen shots, and/or HAR file(s).

Expert Comments Appreciated
This Community Tip will remain open for input from Community experts and those familiar with this issue. We really appreciate comments like: “What are the three things to always try”, or “Do this first” or “In my experience”.

This is a Cloudflare Community Tip, to review other tips, click here.