Certificate #2: RSA 2048 bits (SHA256withRSA) No SNI -- Mismatch, SSL Test gives back a different domain name

Raghava Sai Akula 406 Reputation points
2024-04-01T16:25:43.5866667+00:00

I have few applications hosted in IIS on a windows server. which are routed through Azure APP Gateway.

I'm enhancing the SSL configuration across all my domains. Upon running the ssllabs.com test revealed a second certificate(Certificate #2: RSA 2048 bits (SHA256withRSA) No SNI) being sent wrongly by my server.

My server sends an certificate for one of my other domains.

For instance, when testing ABC.ca, Certificate #2 is issued to another domain def.com(because one of my other site with smallest/lowest priority in APP gateway listener Rules). Although the SSL rating for the site is A+

User's image

User's image

I followed the below URL and edited Hosts and added certificates under web hosting

Windows development | Internet Information Services
Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,217 questions
Windows for business | Windows Server | User experience | Other
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.