Troubleshooting Heroku SSL errors

This article describes somes of the most common errors you may experience when installing a certificate on Heroku, along with the corresponding solutions.

Invalid common name (* or *.

You pointed your domain to Heroku to use an SSL certificate but you are receiving an error such as Troubleshooting Heroku SSL errors, Invalid common name or The certificate for this website is invalid.

This error occurs because you are pointing the DNS to the generic Heroku endpoint. Instead you need to use the SSL host name provided you by Heroku. The hostname generally ends with:

➜  ~  dig

;; ANSWER SECTION:   771 IN  CNAME 300    IN  CNAME 54 IN  A

For more information about using DNSimple certificates with Heroku visit the SSL Certificates for Heroku article.


Here’s a few possible variants of the error message, depending on the browser you are currently using.

Google Chrome

Your connection is not private

Attackers might be trying to steal your information from (for example, passwords, messages, or credit cards). NET::ERR_CERT_COMMON_NAME_INVALID

This server could not prove that it is; its security certificate is from This may be caused by a misconfiguration or an attacker intercepting your connection.

screenshot: Showing SSL certificate error in Chrome

Google Chrome

This is probably not the site you are looking for!

You attempted to reach, but instead you actually reached a server identifying itself as * This may be caused by a misconfiguration on the server or by something more serious. An attacker on your network could be trying to get you to visit a fake (and potentially harmful) version of

screenshot: Showing SSL certificate error in Chrome


screenshot: Showing SSL certificate error in Safari