Lets Encrypt - mismatch subdomain

Hi,

I try to make mail subdomains like:
mail.jellybeanstore.nl
mail.sprinttovision.eu

But when I try to give them a Lets Encrypt certificate it only succeed for the subdomains jellybeanstore.nl and sprinttovision.eu. But when I browse to mail.jellybeanstore.nl it give a mismatch error with my hostname (s2.sprinttovision.nl).

How can I fix this? I tried to look for topics in this forum but nothing works for me.

Thanks for helping me.

Pascal

Hello,

To get a valid cert installed for mail.jellybeanstore.nl in a web-server you need either to create domain/subdomain/pointer/alias in Directadmin with the same name, or add the name to the server-wide cert installed for the hostname.

So its not possible to have secured subdomains like mail.domain-a.com, mail.domain-b.com, mail.domain-c.com for all my users, so they can use there own domain for the mailserver without mismatch error ?

Directadmin can add certs into Exim, Dovecot for SMTP, POP, IMAP to work under those certificates. As for requests to domains names which have no virtual hosts they are caught by a default virtual host created for a hostname. And the default virtual host has no certs for your domains, unless you add your names as SANs.


So the answer yes, you can not achiee the desired by default. But still there are possible workarounds though:

- https://help.directadmin.com/item.php?id=92
- https://help.directadmin.com/item.php?id=560

The listed help articles can give an idea, but they are missing steps for HTTPS with certs.