A certificate for the domain of this server is missing. Click here to generate a self-signed certificate or here to import a signed certificate and its private key.

I feel so lost.

I order a cert from Lets Encrypt for:

domain.com, www.domain.com, xmpp.domain.com

I import this cert into OF. Its cert store contents displays this:

domain.com, www.domain.com, xmpp.domain.com (domain.com_2)

The server manager displays this:

XMPP Domain Name: 	domain.com
Server Host Name (FQDN): 	xmpp.domain.com

Yet the certificate identity store shows this error:

A certificate for the domain of this server is missing. Click here to generate a self-signed certificate or here to import a signed certificate and its private key.

Where is the mismatch? What is missing?

We had those false positive warnings about missing SRV records, now these false positives re SSL certs. Are you using a standard, stable string comparison routine in Java? There should not be so many false positives in any modern piece of software. This is absolutely mind-boggling!

The server will try to account for all possible scenarios like(this is an example only, i dont remember it quite right in my head. for perfection check your logs):
pubsub.example.com
httpfileupload.example.com
conference.example.com
And there might be a few that i am missing. for the ones that you will use for example conference.example.com you should have DNS records and you also should include them in your certificate. This will make things go smoother with the clients. that being said, if you only miss the ones that you are not using then it will not really matter. It will just keep complaining, but will not interfere with anything.

Another misleading warning? Can it not be made actual and clear?