SSL for www.domain.com and domain.com

  • When going to domain.com (without the www) I get an SSL error
  • netlify istance name: defisource

I see that you can only have one SSL certificate per site, but it seems like a very common need to have both domain.com and www.domain.com have a working SSL certificate.

What is the suggested way to avoid users having an SSL error when going to the site without the www.

can you tell us which domain, please?

https://defisource.io/https://www.defisource.io/ is the working domain. The site is currently password protected though.

We just got that fixed for you, @WarrickF!

Certificates are meant to cover both the www and the bare domain. Generally, the reason we are unable to provision a complete SSL certificate for your custom domain is that the DNS cache time to live (TTL) value for a record has not had time to expire (from your old settings) before you tried to use it with Netlify. Our SSL provider (https://letsencrypt.org) is unable to create certificates for names that have old cached values still in effect.

Depending on how you configure your domain, we may only attempt to fetch the certificate once - when you update your settings with the new domain name. Usually, if it is your first hostname on a site, we’ll try several times until we succeed.

If that process generates a partial certificate, there is usually a button in our UI to renew the certificate which would try to add all appropriate names.

The additional delay between your attempt and mine seems to have been enough to allow things to work right when I attempted to re-issue the certificate.

Please let me know if things are not working as expected now.