Repair https certificate for two domains

simonfreund · July 29, 2022, 2:33pm

PLEASE help me repairing the HTTPS settings for my domains:

simonfreund.netlify.app

www.simonfreund.xyz – works just fine
simonfreund.xyz – is not secure

I clicked on renew some hours ago, but the simonfreund.xyz domain is just not added to the HTTPS so I read to ask here for you to repair it and I did.

Thank you : )

hrishikesh · July 29, 2022, 2:49pm

The problem is because your apex domain is not pointing to Netlify:

dig A +short simonfreund.xyz
> 91.204.46.208

That’s not the correct IP Address. The correct one is listed here: Configure external DNS for a custom domain | Netlify Docs.

TL;DR: It’s 75.2.60.5

simonfreund · July 29, 2022, 3:06pm

Thank you, that makes total sense. I thought the latest A record would overwrite old ones. Turns out it doesn’t. I have updated it now and I’m hoping it will work in a few hours. Thanks for your help

hillary · July 29, 2022, 8:48pm

Thanks for letting us know, @simonfreund! Should this not resolve itself now that you have updated it, please follow up here!

simonfreund · July 30, 2022, 8:23am

Thank you, Hillary. This solved the issue and everything is working just fine now : )

simonfreund · August 18, 2022, 9:40pm

Dear @hillary – sorry to bother you again. I tried adding aliases (simonfreund.com) and this kind of broke the whole thing and now simonfreund.xyz is nor working anymore. I deleted the alisases (simonfreund.com & www.simonfreund.com) but I can’t rewnew the certificate… Your help is much appreciated. Thank you, Simon

coelmay · August 18, 2022, 10:12pm

Hey @simonfreund

I see simonfreund.xyz is working and redirecting to www.simonfreund.xyz with a valid SSL certificate.

I do see an AAAA record that isn’t a Netlify address that may cause issues

dig simonfreund.xyz AAAA
simonfreund.xyz.	86254	IN	AAAA	2a03:4000:30:cc36::15:3091

fool · August 18, 2022, 11:54pm

Can confirm, @simonfreund , that what Coel describes would absolutely block us from renewing your certificate. If you can remove that AAAA record I think everything will work as you expect.

simonfreund · August 19, 2022, 7:58am

Thank you so much for looking into this @coelmay & @fool – I have now deleted that AAAA record, hoping the issue will be solved that way. Is there anything else I have to do? Rewnew the certificate once again, for example? THANK YOU – so glad to have your help, I’m just so lost with all of those records : )

coelmay · August 19, 2022, 8:41am

As mentioned in my last post @simonfreund, your site is loading with SSL enabled, so there is no need to renew the certificate.