Container App: No certificates match the selected hostname (using single-domain SSL for naked and WWW)

tyler 1 Reputation point
2022-07-06T00:17:45.08+00:00

I purchased a single-domain SSL from GoDaddy. It was confirmed to me via their support that this certificate covers both the bare domain, AND the www. subdomain.

When I attempt to add the "www.domain.com" Custom Domain in my Azure Container App, it shows "No certificates match the selected hostname". I am able to add the naked domain without any issues.

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
6,474 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Rafael da Rocha 5,071 Reputation points
    2022-07-06T00:55:18.877+00:00

    The Subject Alternative Name field in the certificate must list both. Maybe the CSR wasn't properly created to include them?
    This is an image from a GoDaddy cert just like the one you got:
    217905-ss.png

    Check to see if both entries are there


  2. Rafael da Rocha 5,071 Reputation points
    2022-07-06T02:06:28.023+00:00

    Was basing my experience from the app service where this cert is used.
    Tested with a container app on my sandbox and got the same result.

    A wildcard cert does the job, a single domain one seems as it is broken for now.

    This issue was reported in Github a few days back and marked as a bug in the last hours:
    https://github.com/microsoft/azure-container-apps/issues/292