CompTIA CASP+ (CAS-004) — Question 140

A company launched a new service and created a landing page within its website network for users to access the service. Per company policy, all websites must utilize encryption for any authentication pages. A junior network administrator proceeded to use an outdated procedure to order new certificates. Afterward, customers are reporting the following error when accessing a new web page: NET:ERR_CERT_COMMON_NAME_INVALID. Which of the following BEST describes what the administrator should do NEXT?

Answer options

• A. Request a new certificate with the correct subject alternative name that includes the new websites.
• B. Request a new certificate with the correct organizational unit for the company's website.
• C. Request a new certificate with a stronger encryption strength and the latest cipher suite.
• D. Request a new certificate with the same information but including the old certificate on the CRL.

Correct answer: A

Explanation

The correct action is to request a new certificate with the appropriate subject alternative name (SAN) because the error indicates that the common name does not match the URL being accessed. The other options do not address the mismatch in the certificate's common name and would not resolve the NET:ERR_CERT_COMMON_NAME_INVALID error.