A+ rating still unsecure by chrome's opinion

by The Architect   Last Updated August 14, 2019 20:00 PM

I am provisioning my server on Digital Ocean and although i am getting an A+ rating from ssllabs

https://www.ssllabs.com/ssltest/analyze.html?d=zandu.biz

but when i connect to my size https://www.zandu.biz or https://zandu.biz

i get a unsecure notice inside chrome.

Any advice on how to solve this?



Answers 1


This server could not prove that it is www.zandu.biz; its security certificate is from zandu.biz. This may be caused by a misconfiguration or an attacker intercepting your connection.

The common name in your site's certificate is zandu.biz, which is not valid for a different name (www.zandu.biz). Moreover, you have a redirect from zandu.biz to www.zandu.biz, so if you use the name the certificate is valid for it redirects to the name that it isn't.

What you need is to get a certificate with both names.

zrm
zrm
August 14, 2019 19:25 PM

Related Questions


apache2 won't start due to lets encrypt

Updated March 26, 2017 19:00 PM


apache2 and letsencrypt: very slow website

Updated October 04, 2017 21:00 PM

letsencrypt free SSL instaltion on cpanel server

Updated December 05, 2015 09:00 AM