search

agilesix / AgileSix.com

Agile Six works with government agencies to create customized digital solutions that meet the needs of their users, both staff and citizens.
https://agile6.com
MIT License
4 stars 1 forks source link

Fix TLS error for https://www.agilesix.com (not www.agile6.com) #6

Open ElijahLynn opened 4 years ago

ElijahLynn commented 4 years ago

Getting cert error on https://www.agilesix.com when it tries to redirect

image.png

dig www.agilesix.com

www.agilesix.com. 3504 IN CNAME agilesix.com. agilesix.com. 504 IN A 184.168.131.241

ip2location.com > 184.168.131.241 > godaddy.com

ElijahLynn commented 4 years ago

Just hangs at connecting now.

ElijahLynn commented 3 years ago

This is also happening at https://agilesix.net/.

ElijahLynn commented 3 years ago

I think what needs to be done is that we update the Lets Encrypt certificate with 2 Subject Alternative Names (SAN) and somehow attach that to the shortener.secureserver.net redirects. I don't know if the shortener.secureserver.net are in GoDaddy or where that is?

image

ElijahLynn commented 3 years ago

It appears that securesever.net is in fact GoDaddy. And now that I think about it, the main site is on Netlify and probably has integration with Lets Encrypt, so the SAN idea won't be easy with that. I suggest we update DNS to point at Netlify instead of GoDaddy's redirect service (secureserver) for agilesix.com/net and use the interface in Netlify to regenerate the TLS certificate with the two additional SANs.

image

ElijahLynn commented 3 years ago

K, I added the domain aliases in Netlify:

image

Now we just need to update the DNS in GoDaddy. For the below domains in GoDaddy we need to add the following DNS records, make sure to include the trailing period, .:

Then, we need to go into our Netlify and "Renew Certificate" and the SANs should be added to the Lets Encrypt certificate.

image