ERR_SSL_UNRECOGNIZED_NAME_ALERT — TLS alert 112: server has no cert for the requested SNI hostname. Causes: misconfigured nginx (missing server_name), Cloudflare Workers without a custom cert, legacy server with a single cert for all virtual hosts. Fix: add server block for requested hostname + valid cert.
Below: causes, fixes, FAQ.
Free online tool — SSL certificate checker: instant results, no signup.
server_name matches requested hostname exactlyopenssl s_client -connect ip:443 -servername hostnameThe ERR_SSL_UNRECOGNIZED_NAME_ALERT error indicates a Server Name Indication (SNI) mismatch during the SSL handshake process. To resolve this issue, ensure that your server's SSL certificate matches the domain being accessed, and verify that the SNI is correctly configured in your server settings. Use commands like openssl s_client -connect example.com:443 -servername example.com to troubleshoot the connection.
The ERR_SSL_UNRECOGNIZED_NAME_ALERT error typically arises when the server cannot recognize the hostname being requested due to a mismatch in the SSL certificate and the requested domain. This issue is largely related to the Server Name Indication (SNI) extension, which allows multiple SSL certificates to be served from a single IP address.
When a client connects to a server using HTTPS, the client sends the requested hostname as part of the SSL handshake. If the server's SSL configuration does not recognize the hostname or if the certificate does not cover the requested domain, the client will receive this error. This can happen for several reasons, including:
To diagnose the problem, you can use tools such as openssl or online SSL checkers. The command openssl s_client -connect example.com:443 -servername example.com will help you assess whether the server presents the correct certificate for the specified hostname.
To effectively resolve the ERR_SSL_UNRECOGNIZED_NAME_ALERT error, follow these steps:
openssl x509 -in your_certificate.crt -text -nooutServerName and ServerAlias directives in your virtual host configuration:<VirtualHost *:443>
ServerName example.com
ServerAlias www.example.com
SSLEngine on
SSLCertificateFile /path/to/certificate.crt
SSLCertificateKeyFile /path/to/private.key
</VirtualHost>nslookup command:nslookup example.comSSLProtocol all -SSLv2 -SSLv3By following these steps, you can effectively troubleshoot and resolve the ERR_SSL_UNRECOGNIZED_NAME_ALERT error, ensuring a secure connection for your users.
SSL/TLS is the encryption protocol that protects data between the browser and server. Our tool analyzes the certificate, chain of trust, TLS version, and knownvulnerabilities.
Issuer, validity period, signature algorithm, covered domains (SAN), and validation type (DV/OV/EV).
Full chain verification: from leaf certificate through intermediates to root CA.
Protocol version (TLS 1.2/1.3), cipher suites, Perfect Forward Secrecy (PFS) support.
Set up a monitor — get Telegram and email alerts 30/14/7 days before expiration.
SSL certificate monitoring
TLS config audit
HTTPS as ranking factor
customer trust
www and subdomains.Strict-Transport-Security header forces browsers to always use HTTPS.SSL certificate monitoring, check history and alerts 30 days before expiry.
Sign up freeYes. All modern browsers send SNI. Server without SNI support = legacy, fails with multiple HTTPS vhosts.
nginx: <code>server_name _;</code> matches undefined hosts. But cert must still match SNI (otherwise UNRECOGNIZED_NAME).
ECH (RFC 9460) encrypts SNI in TLS 1.3. Cloudflare supports 2023+, Chrome partial. Does not cause this error — server-side config is target.
<a href="/en/ssl">Enterno SSL checker</a> validates cert-vs-hostname. <a href="/en/monitors">Scheduled monitors</a> alert on mismatch.
Free plan — 10 monitors, checks every 5 min, no card required. Upgrade for 1-minute interval and multi-region monitoring.