Using Custom Domain Wildcard SSL Certificates With Object Storage
I'm trying to use a wildcard SSL certificate with a custom domain and Object Storage bucket, but I'm getting the following error in Cloud Manager when uploading the certificate:
Certificate is not valid for the bucket name. Verify the bucket name is covered by the SANs and/or CN.
My domain is example.com
and my bucket is labeled media
. I'm trying to access this bucket at https://media.example.com/path/to/files
.
Why am I getting this error?
2 Replies
The error you're receiving indicates that the SSL certificate you're using does not have the appropriate Subject Alternative Names (SANs) or Common Name (CN) to cover the bucket name "media".
A wildcard SSL certificate typically covers all subdomains of a domain, but it does not cover arbitrary labels or path components in the URL. In your case, "*.example.com", the SSL certificate may only cover the domain name "example.com" and any specified subdomains, but it does not cover the specific bucket name "media".
To resolve this error, you will need need to obtain a new SSL certificate that includes the specific bucket name "media" as a SAN or CN.
You need to change your bucket label from media to media.example.com
https://www.linode.com/docs/products/storage/object-storage/guides/custom-domain/#create-a-bucket
Since the intention is to use this bucket with a custom domain, the bucket must be labeled as your fully qualified domain name, such as assets.example.com.