ZTNA Admin trying to create a custom wildcard web application.

After providing the required certificates for the the wildcard as required, there is a Java error popping up with the following information when trying to save the changes:

Unexpected error
java.lang.RuntimeException: CertmanServiceClient: Failed sending create the request: 400 Bad Request: "{"message":"Invalid request parameters: There is no certificate for *.ocpv.arrowlabmuc.de domain","timestamp":"2024-04-30T09:11:53.006401452Z","status":400,"reasonPhrase":"Bad Request","requestIdentifier":"0acf794a8bd8d585957954e517800de0","additionalParams":null,"error_type":"bad_request","error_message":"Invalid request parameters: There is no certificate for *.example.com domain"}"

The same is also happening for other wildcard domains.

Re-uploading the certificate files, copying and pasting the information directly from the certificate, verifying the CNs within the certificate files match were all performed but without any success.

ZTNA.

Web application.

Wildcard certificates.

Java libraries used to validate the certificate information look for the wildcard domain in the list of SANs, not the CN.

Add the wildcard domain "*.example.com" as a SAN to the certificate instead or in addition to the existing CN. Once done, the certificate is accepted by the configuration dialog.

Initially only "*.example.com" existed as the CN, along with SAN entries like "test.example.com", "*.example.com".