asp.net - SSL Certificate issue to the end user -


i have web site developed in asp.net , hosted in cloud. site running on https protocol , certificate issued domain (e.g. example.com ) , subdomain (*.example.com). works if user types example.com or app.example.com. user types url incorrectly. type www.app.example.com. in case browser displays warning certificate. states “this server not prove www.app.example.com; security certificate *.example.com. may caused misconfiguration or attacker intercepting connection”

this fine since subject name (or issued to) not matching since involves 2 subdomains i.e. first subdomain www , subdomain app. many user scare , leave web site. googling found, problem can fixed regenerating certificate additional subject alt names such *.example.com , ..example.com. staff not want regenerate certificate reason. there alternative fix problem without regenerating certificate. expectation error message should not displayed , action should not required end user.

i have tried redirect rules in iis. not working.

platform details – asp.net mvc 5, iis 7.5 , windows server 2008 r2 datacenter

is there alternative fix problem without regenerating certificate.

no. certificate must match name. if certificate not match user gets error. there no way around , if there 1 considered security risk, because without proper name check man-in-the-middle attacks possible.

i have tried redirect rules in iis. not working.

redirects done @ http level, means https first needs establish ssl connections. if fails because of name mismatch redirect not reached.


Comments

Post a Comment

Popular posts from this blog

android - MPAndroidChart - How to add Annotations or images to the chart -

i working latest mpandroidchart library , looking way add annotations or images clickable. example: once data reaches value event occurs want able display user - there multiple events can occur annotations (not sure if right word) or image added @ point in chart. any pointers welcome. check documentation of yaxis . focus on setspacetop(...) , setaxismaxvalue(...) methods. for background: bar-shadow , disable calling: barchart.setdrawbarshadow(false) or change color: bardataset.setbarshadowcolor(int color)
Read more

javascript - Add class to another page attribute using URL id - Jquery -

i have attached id url. ex: when click link 1 , has #tab-2 id , takes me landing page. in landing page have find element has #tab-2 id have add class .active . i tried no luck. please 1 correct code. thanks js fiddle link html <div class="menu"> <ul> <li><a href="http://jsfiddle.net/gscyoa0j/1/#tab-2">link 1</a></li> <li><a href="http://jsfiddle.net/gscyoa0j/1/#tab-44">link 2</a></li> <li><a href="http://jsfiddle.net/gscyoa0j/1/#tab-74">link 3</a></li> </ul> </div> landing page <div class="tab"> <ul> <li><a id="tab-2" class="active" >link 1 content</a></li> <li><a id="tab-44" >link 2 content</a></li> <li><a id="tab-74" >link 3 content</a></l...
Read more

firefox - Where is 'webgl.osmesalib' parameter? -

i'm trying webgl running on firefox (v37.0.2) via software acceleration mesa. tried following steps have been stated in article: http://www.binarytides.com/enable-webgl-firefox-ubuntu/ however, unable find parameter named ' webgl.osmesalib ' in about:config section? has been removed (or renamed)? if yes, how should instruct firefox use mesa's software acceleration webgl? looks support osmesa removed in favour llvmpipe.
Read more