Forum Discussion

PAM77's avatar
PAM77
Copper Contributor
Feb 26, 2026

WAC can connect to itself or to other servers.

Hello, I have installed WAC with an internal certificate of my company. I can login to the web, the certificate appears correct in the browser. When I try to connect to the gateway itself or to oth...
Francisco_M's avatar
Francisco_M
Brass Contributor
Mar 02, 2026

The certificate’s Subject Name does not match what WAC is configured to use

WAC binds to the certificate using Subject Name, not SAN.

If your certificate’s subject is an email address (as in your example), WAC will not match it.

Example of your subject:

E=email address removed for privacy reasons CN=email address removed for privacy reasons

This is not valid for a WAC gateway certificate.

WAC requires:

CN=servergw.domain.com

Even if SAN contains DNS names, WAC still matches on Subject Name, not SAN.


Reissue the certificate with:

  • CN = servergw.domain.com
  • SAN = servergw.domain.com, servergw, etc.

Then run:

Import-Module "$env:ProgramFiles\WindowsAdminCenter\PowerShellModules\Microsoft.WindowsAdminCenter.Configuration" Set-WACCertificateSubjectName -SubjectName "servergw.domain.com"

PAM77's avatar
PAM77
Copper Contributor
Mar 03, 2026

Yes, I created another certificate with only the CN in the subject, and it works correctly now.
On the other hand, I don't understand why it can't detect the CN even though there are more fields in the subject. 
All our certificates are the same, and they are configured on web servers without any problems.

 

Thanks for the help :)