Netlify managed SSL cert not working for Netlify managed branch deploy subdomain

brak · June 17, 2020, 9:02am

I use Netlify to deploy my Angular UI site. I am deploying from the Github branch “staging” and using the auto-generated Netlify sitename for the branch deploy “https://staging--appcloudtimeapp.netlify.app/” it all works fine.

However I then use the Netlify website to create a branch subdomain which Netlify names “https://staging.app.cloudtime.app” as shown in the attached screenshot:

You can also see the DNS record that Netlify creates for this:
Name: staging.app.cloudtime.app
Type: NETLIFY
Value: appcloudtimeapp.netlify.app

But clicking on the branch subdomain “https://staging.app.cloudtime.app” URL gives me the SSL error shown below.

we need to know your netlify site name
appcloudtimeapp
DNS issues? Tell us the custom domain
cloudtime.app, managed by Netlify
Tell us the error message
NET::ERR_CERT_COMMON_NAME_INVALID
Subject: *.netlify.com
Issuer: DigiCert SHA2 Secure Server CA

jen · June 18, 2020, 6:17pm

Hey @brak,
It looks like there’s another CNAME record in your DNS record that points staging.app.cloudtime.app to azurebasics–appcloudtimeapp.netlify.app. The duplicate records are likely causing issues for issuing the SSL cert. Can you try deleting the CNAME here:

and letting us know if that fixes things for you?

brak · June 20, 2020, 10:00am

Thanks for pointing that out. I have deleted the incorrect DNS entry, flushed my local DNS cache, given it a day to replicate DNS round the world. However I am still getting the same invalid SSL error

jen · June 21, 2020, 2:28am

Hey @brak,
I believe my colleague @laura got that cert issued for you- looks correct to me in the browser! Please let us know if you run into any issues.