SSL certificate issue

Hello,
I am currently setting up an OS X Mavericks server; all the services have been configured and appear to be running fine, but I have an issue with my SSL certificate connection - I purchased a verified SSL certificate from RapidSSL.

When I connect over SSL to https://server.mydomain.eu everything is great, certificate shows as verified in safari. However, when I try to setup contacts over SSL, I put in the hostname server.mydomain.eu, check "use SSL". The problem is, that contacts then comes back saying the certificate is not verified and it is trying to connect to n2190790xxxxx.netvigator.com (xxxxx are numbers that have been withheld) and says the certificate for this host is not verified as the url on the certificate is server.mydomain.eu.

Netvigator is my ISP, and accessing n2190790xxxxx.netvigator.com over http gives me the same website as server.mydomain.eu. I have no idea how to fix this and don't understand why contacts is connecting to the netvigator url instead of the url I enter into the field. It's almost as if my own ISP is launching a man-in-the-middle attack against me

Thanks for any help!

 

Hi Jtara, thanks for your help. I don't actually have a static IP address, but my dynamic IP changes very seldom (only when my router is switched off for a longer period of time and the last time that happened was 6 months).

I will look into the reverse DNS issue; I will be changing DNS server providers anyway so we will see if that gets me anywhere.

Thanks a lot!

 

Yeah, so I just did a reverse DNS lookup and this is the problem - the lookup returned the ISP url for my IP address.

Would Server Name Indication help me out here by any chance? The puzzling thing is, that the SSL certificate works great for HTTPS connections (no issue with unverified host), such as to my encrypted server website. Not quite sure why it works for https but not for anything else.

Is there any way to get around this without getting a static IP and dealing with my ISP? Thank you.

 

I'm not running my own email server (I don't think I ever mentioned email, the issue is with contacts and the other services) for precisely the reason you mention - we have email hosting with someone else. But I do need to setup os x server for it's other services and that's when the ssl problem comes up.