The Common Name Invalid Error

Last updated on Jan 28, 2021

The following screenshot shows the error message displayed when someone attempts to reach a server which has a certificate with no SAN, using a Chrome browser at version 58 or higher. Notice the NET::ERR_CERT_COMMON_NAME_INVALID error (The exact error message may vary.), and the mention of a missing_subjectAltName.

If you check the certificate details, you will see additional information:

The screenshot below shows details of the valid certificate for a Haivision Media Platform server. Notice that the SSL v3 Extension for Subject Alternative Name is populated with valid DNS Names. This is how to prevent exposing users to the "Common Name Invalid" error.