SSL certificate error occurs when the web browser is unable to verify the SSL certificate installed on the site. Instead of logging in, your browser will display an error message warning you that the site may be insecure. This message differs depending on two factors. The first is the browser you are using.
Editor’s note. This blog was originally published in September 2016. Its clarity and accuracy have been reviewed by Sebastian Schultz, GlobalSign Product Manager, and have been updated accordingly.
Sometimes even experienced PKIs have difficulty ordering or installing SSL / TLS certificates. This does not indicate a lack of knowledge, but these processes can lead to previously invisible errors. Ordering the correct certificate, generating the CSR, downloading it, installing it, and testing it to ensure there is no problem are all areas of failure.
We want to help make this process as easy as possible from start to finish. With this in mind, we have compiled our main questions and concerns that customers may encounter when ordering or installing. We hope this blog will help you avoid these mistakes and reduce your time. However, if you have an issue that this blog cannot solve, you can still read the GlobalSign Support Knowledgebase or submit a ticket.
What Is SSL / TLS? Why Do We Use An SSL / TLS Certificate?
SSL or Secure Sockets Layer and TLS (Transport Layer Security) are cryptographic protocols that provide a secure channel of communication between clients and servers on the Internet. SSL is an older encryption protocol and TLS is a relatively newer version. The purpose of the SSL / TLS certificate was not only the authentication itself, but also the identification of the remote server that the client browser communicates with. Let’s say your browser communicates with https://www.yourdomain.com and the website’s SSL / TLS certificate is valid. This indicates two things:
- The channel is encrypted. so that’s allListening on the network leads to distortion of information, which is impossibleto be read.
- Your browser communicates with a real server andnot a cheater.
This, of course, was the intention. Fast forward to reality and now about 50% of phishing websites use HTTPS to target spam users. A domain should only be thoroughly verified for its identity using an EV SSL certificate. At least there is responsibility as the business has to be registered and the owner has to pay for the EV certificate.
SSL / TLS provides confidentialsociality and data integrity. We use SSL / TLS to ensure secure transmission of data over cable. Encrypting transmitted data prevents attackers from intercepting the network to steal confidential information such as passwords, credit card details, etc.
SSL / TLS certificates are signed by a third party called a certification authority, which prevents an attacker from creating a fake certificate and passing it on as legitimate. The browser warns the user if the website is using an invalid certificate (it cannot be traced back to the root CA or the names entered in the certificate do not match). We do not recommend going to such a website as it could indicate that you have entered a phishing or fake website.
Solution 1: Replace All Urls With Https
Open the source of this web page and search for HTTP: // and replace it with https: // for all images, frames and java scripts. For example
img src = “http://www.domain.com/image.gif” alt = “Will be replaced by” img src = “https: // www. domain.com/image.gifâ € alt = â < / p>
It won’t work if on the webthe site does not have an SSL certificate configured and you are opening an image / file with https.
Solution 2. Change All Links To // Or Make Them Relative
If you don’t want to change all links to https: //, you can replace them with “//”.
img src = “http://www.domain.com/image.gif” alt = “is replaced with” img src = “//www.domain”. com / image.gif â alt = â
Or you just need to get relative access to it.
img src = “http://www.domain.com/image.gif” alt = “is replaced with” img src = “image.gif” alt = â € ž
This method tells your browser that the image / script / frame should be loaded safely and without errors if secure access to the website is required. However, if the website is not safe to access, the browser will load the image / script /. Normal frame.
Solution 3: Change Your Browser Settings
If you are a website administrator, you can change the code to resolve this error. However, if you are not a website administrator, the only way to fix this error is to change your browser settings.
In Internet Explorer, do the following:
- Open Tools, then Internet Options.
- Select here in “Security” tab.
- Click the Custom Layer button.
- Scroll down until you find the Show Mixed Content option, select Enable and click OK.
- A security alert pop-up will appear on your screen. Then click Yes.