Apache SSL New Domain Redirect

Given that the rewrite/redirect doesn't happen until after the user has made a request, it makes perfect sense that HTTPS requests to a site with the wrong SSL certificate provoke a browser warning.

The correct way to handle this is to have two separate SSL vhosts, on separate IPs, each configured with their own SSL certificate. Then, in the olddomain vhost, setup your redirects as you want them.


Because HTTPS negotiates security before the host: header, you either have to get a certificate that has both the old site and the new site, or you need to put your old site redirector on its own IP address. You could play games with ports but that would probably confuse your users.


Instead of having 2 separate IPs and 2 separate certificates, another option is to use a UC certificate to include both names in one certificate. Then you can redirect without receiving any errors.