CAPC HTTPS Mismatched Address

Document ID : KB000100635
Last Modified Date : 08/06/2018
Show Technical Document Details
Issue:
When accessing CAPC on HTTPS, the browser declares there is a problem with this website's security certificate.  The error seen in Mismatched Address.
Cause:
This error is due to the hostname or IP being used to access the webserver not being listed as either the Common Name (CN) or Subject Alternative Name (SAN)
Resolution:
If using a self-signed certificate, generate another and use the proper entry for CN when asked or add a SAN entry by using the -ext SAN= switch addition to the keytool command to create the initial keystore / certificate.  An example that lists the shortname, fqdn and ipaddress is below.

-ext SAN=dns:shortname,dns:fqdn,ip:1.2.3.4

If using a CA signed certificate you will need to request a new certificate with the same requirements as the self-signed certificate above.  Either the CN needs to match the url used or an entry in the SAN needs to match the url being used.