Menu
What's new
By:
Filters Better Search

Trouble with Server Certificate for WebGUI

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Zigster

Zigster

Occasional Visitor
Hi Forum,

Got my GT-AXE11000 and had it correctly setup (Asus-WRT Merlin 388.1_0_rog with correct Browser Certificate), until I carelessly added under /Advanced_ASUSDDNS_Content.asp -> Webui SSL Certificate -> Additional Certificate SANs the routers IP.
And now I can't get rid of that additionally added Router IP in the SAN list.

Things I tried without success:
1. Restore settings before adding the Router's IP to Additional Certificate SANs
2. Reset to factory default (Merlin) and restore settings
3. Flash latest Original Asus Firmware + restore settings
4. Hard Reset (WPS Button + Power on)
5. Clear the JFFS on next boot

The SAN list always contains the Router's IP adress:

1679265368905.png


Similarly the Section: /Advanced_System_Content.asp ->Local Access Config will also show the SAN list:

1679265479533.png


I'd be very grateful for hints on how to get rid of the Router's IP in the SAN List.

Thank you very much for your support,

Zigster
 
Last edited:
Why do you need to get rid of the IP address? Is it not the correct IP address of your router?

As far as I know there's always been the IP address there:
Untitled.png
 
ColinTaylor said:
Why do you need to get rid of the IP address? Is it not the correct IP address of your router?

As far as I know there's always been the IP address there:
View attachment 48696
Click to expand...
Hi ColinTaylor,

thanks for your reply.
The router ip is correct, but the problem is, that the Certificate is not accepted by the browser (Invalid Certificate, red Exclamation mark), when visiting router.asus.com:8443 as it is issued for the Router's IP (Issued for (CN): 192.168.x.y and Issued by (CN): 192.168.x.y ) and not for router.asus.com.

I followed the ASUS-procedure (Method 1) from her: https://www.asus.com/us/support/FAQ/1034294/

I also removed the Certificate and reinstalled it, but to no prevail.

Thanks again for your support
PS: I created a new one (renaming it from *.pem to*.crt and then installing it) and at least now Chrome says, that the certificate is valid, but it is still not trusted and issued for and by 192.168.x.y (which afaik it shouldn't be)
 
Last edited:
[Update]
After closing the browser multiple times, the problem is magically gone, apparently the recreation of the certificate, renaming it from *.pem to *.cert and then installing it actually helped to solve the issue!

Thanks to @ColinTaylor
 
You must log in or register to reply here.

Similar threads

R
Domain VPN Routing
2
Replies
24
Views
2K
Ranger802004
R
R
Dual WAN Failover ***v2 Release***
22 23 24
Replies
466
Views
36K
Ranger802004
R
RMerlin
  • Locked
Beta Asuswrt-Merlin 388.1 Beta is available for select models
44 45 46
Replies
903
Views
190K
RMerlin
RMerlin
B
Solved OpenVPN problem on RT-AC86U after upgrade to 386.4 - server daemon fails to start with DNS resolution error
Replies
7
Views
5K
ColinTaylor
C
InductionForced
Solved No Certificate Issue with ASUS OpenVPN Config File
2
Replies
28
Views
18K
NEVdD
N
Similar threads
Thread starter Title Forum Replies Date
C Router trouble RT-AX88U Asuswrt-Merlin 5
A Having trouble with WireGuard VPN mon ac86u Asuswrt-Merlin 3
skeal Solved Having trouble comparing the results of sha256 file and PowerShell results of the same file downloaded from the Mirror Asuswrt-Merlin 2
M Trouble Connecting Sonos IKEA Speakers to ASUS GT-AX6000 with Merlin Firmware Asuswrt-Merlin 22
JA93 Easiest setup for remote log server Asuswrt-Merlin 0
Don Draper DDNS Status: Server Error/Inactive Asuswrt-Merlin 11
url004 NXDOMAIN on server but the router can resolve queries Asuswrt-Merlin 1
V DNS server vs DNS-over TLS server list Asuswrt-Merlin 3
L When I access the System Log --> IPv6 tab the web server crashes Asuswrt-Merlin 0
A Solved Inadyn Fails to verify server certs after update to 388.6 Asuswrt-Merlin 3

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 805 (members: 22, guests: 783)
Top