I have created a static website (cloudesk.top) with S3 + Cloudfront + AWS Certiticate manager, after cloudfront distribution deployed, I still can not access my website, the chrome prompt:
This site can’t provide a secure connectioncl
oudesk.top uses an unsupported protocol.
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
I have tried to find the cert for my website with following command:
openssl s_client -showcerts -connect cloudesk.top:443 </dev/null
It prints:
CONNECTED(00000006)
8159337984:error:1404B410:SSL routines:ST_CONNECT:sslv3 alert handshake failure:/AppleInternal/Library/BuildRoots/c2cb9645-dafc-11ed-aa26-6ec1e3b3f7b3/Library/Caches/com.apple.xbs/Sources/libressl/libressl-3.3/ssl/tls13_lib.c:129:SSL alert number 40
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 287 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.3
Cipher : 0000
Session-ID:
Session-ID-ctx:
Master-Key:
Start Time: 1689739301
Timeout : 7200 (sec)
Verify return code: 0 (ok)
---
So it must be somewhere not configure correctly, does any body konw how to fix this issue?
AWS 官方已更新 8 个月前
You save my life. Thanks, after adding the alternative domain name, it works like a charm...