1Answer

Utilising TLS within internal search domains

6.5k Views
  • 5
name Elisa Chainey

A PHP Error was encountered

Severity: Notice

Message: Undefined index: userid

Filename: views/question.php

Line Number: 191

Backtrace:

File: /home/prodcxja/public_html/questions/application/views/question.php
Line: 191
Function: _error_handler

File: /home/prodcxja/public_html/questions/application/controllers/Questions.php
Line: 433
Function: view

File: /home/prodcxja/public_html/questions/index.php
Line: 315
Function: require_once

Asked: Aug 16,2020 In: Ssl
1 Answer
name Elisa Chainey Punditsdkoslkdosdkoskdo
Asked: Aug 16,2020 In: Ssl

Utilising TLS within internal search domains

Consider a domain such as service.internal.domain. By setting the internal search domain to .internal.domain, users can access the address simply by typing service into a browser.

However, due to the TLS certificate being issued to service.internal.domain and not service, TLS domain validation will fail. Is there a way around this i.e. making Chrome or similar browsers consider the fully qualified domain?

I do not have an internal CA authority setup, instead I use Lets Encrypt, so I cannot issue certificates for service.

tls
name
  • 0
Elisa Chainey
Elisa Chainey Added an answer on Aug 16,2020

In the end I decided to redirect all simple hostnames to their fqdn equivalent with this server block.

server {
    listen 80;

    if ($host !~ ".internal.domain") {
        return 301 https://$host.internal.domain$request_uri;
    }
}
  • 0
Reply Report

Trending Tags

android android-sqlite updatemodel gps location html css css-selectors
© 2020 ProDevsBlog
7.7243 sec