Menu
What's new
By:
Filters Better Search

Trouble with Server Certificate for WebGUI

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Zigster

Zigster

Occasional Visitor
Hi Forum,

Got my GT-AXE11000 and had it correctly setup (Asus-WRT Merlin 388.1_0_rog with correct Browser Certificate), until I carelessly added under /Advanced_ASUSDDNS_Content.asp -> Webui SSL Certificate -> Additional Certificate SANs the routers IP.
And now I can't get rid of that additionally added Router IP in the SAN list.

Things I tried without success:
1. Restore settings before adding the Router's IP to Additional Certificate SANs
2. Reset to factory default (Merlin) and restore settings
3. Flash latest Original Asus Firmware + restore settings
4. Hard Reset (WPS Button + Power on)
5. Clear the JFFS on next boot

The SAN list always contains the Router's IP adress:

1679265368905.png


Similarly the Section: /Advanced_System_Content.asp ->Local Access Config will also show the SAN list:

1679265479533.png


I'd be very grateful for hints on how to get rid of the Router's IP in the SAN List.

Thank you very much for your support,

Zigster
 
Last edited:
Why do you need to get rid of the IP address? Is it not the correct IP address of your router?

As far as I know there's always been the IP address there:
Untitled.png
 
ColinTaylor said:
Why do you need to get rid of the IP address? Is it not the correct IP address of your router?

As far as I know there's always been the IP address there:
View attachment 48696
Click to expand...
Hi ColinTaylor,

thanks for your reply.
The router ip is correct, but the problem is, that the Certificate is not accepted by the browser (Invalid Certificate, red Exclamation mark), when visiting router.asus.com:8443 as it is issued for the Router's IP (Issued for (CN): 192.168.x.y and Issued by (CN): 192.168.x.y ) and not for router.asus.com.

I followed the ASUS-procedure (Method 1) from her: https://www.asus.com/us/support/FAQ/1034294/

I also removed the Certificate and reinstalled it, but to no prevail.

Thanks again for your support
PS: I created a new one (renaming it from *.pem to*.crt and then installing it) and at least now Chrome says, that the certificate is valid, but it is still not trusted and issued for and by 192.168.x.y (which afaik it shouldn't be)
 
Last edited:
[Update]
After closing the browser multiple times, the problem is magically gone, apparently the recreation of the certificate, renaming it from *.pem to *.cert and then installing it actually helped to solve the issue!

Thanks to @ColinTaylor
 
You must log in or register to reply here.

Similar threads

M
Asus ZenWifi AX Regularly Loses Internet Connection For All Devices
Replies
3
Views
3K
OzarkEdge
OzarkEdge
R
DomainVPNRouting Domain VPN Routing
3 4 5
Replies
96
Views
9K
Joyz
J
R
WANFailover Dual WAN Failover ***v2 Release***
23 24 25
Replies
499
Views
50K
JGodfrey82
J
RMerlin
  • Locked
Beta Asuswrt-Merlin 388.1 Beta is available for select models
44 45 46
Replies
900
Views
207K
RMerlin
RMerlin
B
Solved OpenVPN problem on RT-AC86U after upgrade to 386.4 - server daemon fails to start with DNS resolution error
Replies
7
Views
6K
ColinTaylor
C
Similar threads
Thread starter Title Forum Replies Date
J Double NAT trouble? ISP-provided modem/router + GT-AX6000 (w/ RMerlin) Asuswrt-Merlin 6
C Router trouble RT-AX88U Asuswrt-Merlin 11
P Accessing remotly Server While Using VPN on Asus Router with Merlin Firmware Asuswrt-Merlin 9
C Can port forwarding do failover to an alternative server? Asuswrt-Merlin 2
N Solved OpenVPN Server split tunnell config Asuswrt-Merlin 5
C OVPN server setup problem Asuswrt-Merlin 7
H DHCP server change Pool Starting Address Asuswrt-Merlin 4
Panic Button Wireguard client optional DNS Server setting Asuswrt-Merlin 2
K Asus router as adblock/firewall server (but not acting as a router) between modem and mesh routers Asuswrt-Merlin 7
Chuckles67 Fixed: Reminder: The system time has not been synchronized with an NTP server. Asuswrt-Merlin 0

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Members online

Total: 765 (members: 17, guests: 748)
Top