Jump to content


Secure Administration - CSR needs to include Subject Alternative Name(s) for Chrome 58+

This topic has been archived. This means that you cannot reply to this topic.
No replies to this topic

#1 Michael Greig

Michael Greig
  • Members
  • 167 posts

Posted 20 April 2017 - 11:42 AM

Beginning with Chrome 58, certificates using only CN without Subject Alternative Name(s) will not be accepted.  The WebUI & openSSL configuration for generating CSRs needs to be updated for these fields.  Please also allow more than one SAN; it's great to have the certificate valid for both the web filter's IP & DNS name.  (Yes, I'm currently running this config; CSR generated on another computer).