SSL certificate not working on subdomain

stanislav.kubernat · July 16, 2021, 3:43pm

Hi guys,

web is http2://dev2.ekofy.sk/

I have Universal Cloudflare Certificate for *.ekofy.sk, ekofy.sk, but the subdomain seems to not be working - as it’s still displaying expired Let’s Encrypt certificate from my hosting servers.

I added dev2 to my DNS records on Cloudflare, but it did nothing. Even tho Diagnostics show The hostname has no DS records.

So now I’m lost at what to do next. Any help is appreciated. Thank you.

stanislav.kubernat · July 16, 2021, 3:45pm

I don’t see option to edit the post anywhere, so I’m just gonna reply to correct the web address

It’s of course https://dev2.ekofy.sk/

cs-cf · July 16, 2021, 3:56pm

Works for me.

curl -Iv https://dev2.ekofy.sk
*   Trying 104.21.35.74...
* TCP_NODELAY set
* Connected to dev2.ekofy.sk (104.21.35.74) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/ssl/cert.pem
  CApath: none
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS change cipher, Change cipher spec (1):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-ECDSA-CHACHA20-POLY1305
* ALPN, server accepted to use h2
* Server certificate:
*  subject: CN=*.ekofy.sk
*  start date: Jun  7 20:30:29 2021 GMT
*  expire date: Sep  5 20:30:29 2021 GMT
*  subjectAltName: host "dev2.ekofy.sk" matched cert's "*.ekofy.sk"
*  issuer: C=US; O=Let's Encrypt; CN=R3
*  SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* Using Stream ID: 1 (easy handle 0x7fd9ce808800)
> HEAD / HTTP/2
> Host: dev2.ekofy.sk
> User-Agent: curl/7.64.1
> Accept: */*
>
* Connection state changed (MAX_CONCURRENT_STREAMS == 256)!
< HTTP/2 200
HTTP/2 200

as 104.21.35.74
AS      | IP               | AS Name
13335   | 104.21.35.74     | CLOUDFLARENET, US

sandro · July 16, 2021, 4:15pm

You should fix that ASAP.

stanislav.kubernat · July 16, 2021, 5:02pm

Oh, so now it works… Okay, thank you. Now I just need to resolve the origin Let’s Encrypt and switch to Full Strict

stanislav.kubernat · July 16, 2021, 5:13pm

Thanks. I finally found a way to do it with my hosting provider.

All looks well now. Thanks guys

system · July 20, 2021, 9:26am

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
SSL on subdomain is not working Security	5	1292	August 23, 2022
SSL problem on subdomain Security	9	880	June 16, 2023
SSL certificate not working on second subdomain DNS & Network dash-troubleshooting	8	10114	August 24, 2019
SSL Certificate is not working Sub Domain Security	5	3165	February 6, 2022
SSL active but not working Security dns , dash-ssl-tls	10	3883	August 12, 2018

SSL certificate not working on subdomain

Related topics