A+ rating still unsecure by chrome's opinion

by The Architect   Last Updated August 14, 2019 20:00 PM

I am provisioning my server on Digital Ocean and although i am getting an A+ rating from ssllabs


but when i connect to my size https://www.zandu.biz or https://zandu.biz

i get a unsecure notice inside chrome.

Any advice on how to solve this?

Answers 1

This server could not prove that it is www.zandu.biz; its security certificate is from zandu.biz. This may be caused by a misconfiguration or an attacker intercepting your connection.

The common name in your site's certificate is zandu.biz, which is not valid for a different name (www.zandu.biz). Moreover, you have a redirect from zandu.biz to www.zandu.biz, so if you use the name the certificate is valid for it redirects to the name that it isn't.

What you need is to get a certificate with both names.

August 14, 2019 19:25 PM

Related Questions

apache2 won't start due to lets encrypt

Updated March 26, 2017 19:00 PM

apache2 and letsencrypt: very slow website

Updated October 04, 2017 21:00 PM

letsencrypt free SSL instaltion on cpanel server

Updated December 05, 2015 09:00 AM