This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Creation of Virtual Host

Posted on 08-07-2018 03:39 AM
Not applicable
Reply posted on --/--/---- --:-- AM

Hi,

I wanted to create a virtual host, so I followed the below defined steps:

1. Created a self- signed certificate in apigee keystore request filling up all the necessary informations.

2. Generated a CSR from it, and shared with the signing authority.

3. Received CA signed certificate and updated keystore with the given certificate.

4. Created a DNS entry pointing to CNAME: org-env.apigee.net

5.Created a reference and using management api created the virtual host.

Now on accessing the virtual host name i'm getting error as:

NET::ERR_CERT_COMMON_NAME_INVALID

Subject: *.apigee.net

Issuer: Go Daddy Secure Certificate Authority - G2

Kindly let me know if there is something else to be done.

Thanks.

Regards,

Pratyush

Solved Solved
0 9 524
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
Not applicable
Reply posted on --/--/---- --:-- AM

@Pratyush I had this same issue. For me the problem was that I put a period "." in the keystore name. When I recreated the keystore and reference that fixed me up.

View solution in original post

Jump to Solution
0 Likes
9 REPLIES 9

Posted on --/--/---- --:-- AM
deboraelkin
Staff
Reply posted on --/--/---- --:-- AM

It seems the certificate being presented is the Apigee default one.

1) Please check that the certificate you generated is not issued for Subject: *.apigee.net

2) Check which alias you used when you uploaded the certificate to the keystore

3) Make sure that the vhost configuration is pointing to the correct alias.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
Not applicable
In response to deboraelkin
Reply posted on --/--/---- --:-- AM

@deboraelkin,

Thank you for the response. I double checked, points you mentioned are correct at my end.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
pratyush_mohapa
New Member
Reply posted on --/--/---- --:-- AM

@Dino,

Could you suggest on my question.

Thanks.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
dchiesa1
Staff
Reply posted on --/--/---- --:-- AM

This message:

ERR_CERT_COMMON_NAME_INVALID

Subject: *.apigee.net

...tells me that the cert your peer (client?) is receiving, is the wildcard cert provided by Apigee. It is not YOUR cert.

Check that the API proxy you are creating, actually listens on the new vhost. It should be uniquely named, it should not be the "secure" vhost.

Check that the alias in the vhost is correct, and is not "anything.apigee.net"

Check that you are invoking https://YOUR_DOMAIN_NAME/api/path/here .

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
Not applicable
Reply posted on --/--/---- --:-- AM

@Pratyush I had this same issue. For me the problem was that I put a period "." in the keystore name. When I recreated the keystore and reference that fixed me up.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
Not applicable
In response to
Reply posted on --/--/---- --:-- AM

I hasten to add that having spaces in the virtual host name also breaks things. I think Apigee should do input validation so we can't do these illegal things in their UI.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
dchiesa1
Staff
In response to
Reply posted on --/--/---- --:-- AM

I wholeheartedly agree. Sorry about that trouble.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
Not applicable
In response to dchiesa1
Reply posted on --/--/---- --:-- AM

@Dino-at-Google thank you for confirming.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
pratyush_mohapa
New Member
In response to
Reply posted on --/--/---- --:-- AM

@Shawn Magill

Might be the issue, will test the same and respond back.

Thank you for the help.

Jump to Solution
0 Likes