WebX Auditor

TLS certificate matches the hostname

The certificate's Subject Alternative Names must cover the hostname being served. A mismatch triggers a browser security warning and usually indicates a misrouted or misconfigured certificate.

Security OWASP ASVS V9.1.1 (hostname validation) Advanced Security Audit
In short

The TLS certificate does not cover this hostname (SAN mismatch). This check is fully automated — the scanner returns a definitive pass or fail.

How to fix it

Re-issue the certificate with the correct hostname(s) in the Subject Alternative Name field, including any www/non-www variants actually served.

Standards this maps to

Frameworks that require this

Advanced Security Audit

Severity

warning — an important issue to address.

Scans this and 300+ other checks across accessibility, SEO, security & speed — first audit free.

Related checks

Contingency Management PlanData ProtectionSQL Injection ProtectionXSS Protection (CSP preferred over X-XSS-Protection)CSRF Token ValidationSecure File UploadInput ValidationTLS 1.2+ EnforcementSecurity Headers CSP and HSTSCookie Security Flags