Related

Join the DigitalOcean Community Community

Join 1M+ other developers and:

  • Get help and share knowledge in Q&A
  • Subscribe to topics of interest
  • Get courses & tools that help you grow as a developer or small business owner
 Join Now
how to enable HTTP/2 after installing SSL via letsencrypt in command line Question Question
Webmin - Lets' encrypt SSL_ERROR_RX_RECORD_TOO_LONG (Firefox) Question Question

Question

SSL Labs shows my site is secure, but when I open shows not-secure... Help??

Posted October 5, 2019 2.9k views
Let's Encrypt

My UniFi site is unifi.cdsolutions.net and SSL labs show site is secure but when i visit it shows NOT SECURE -
What else do i need to check??

Add a comment
cdsolutions
By:
cdsolutions

Related

Join the DigitalOcean Community Community

Join 1M+ other developers and:

  • Get help and share knowledge in Q&A
  • Subscribe to topics of interest
  • Get courses & tools that help you grow as a developer or small business owner
 Join Now
how to enable HTTP/2 after installing SSL via letsencrypt in command line Question Question
Webmin - Lets' encrypt SSL_ERROR_RX_RECORD_TOO_LONG (Firefox) Question Question

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
Submit an Answer
4 answers
cdsolutions October 5, 2019

Ok Thank you!!- There is a port number that is added to the end of the unifi.cdsolutions.net:XXXX —- Is there anything I should be doing with that as far as SSL or with my DNS settings?? Im really the only one that uses the sites but just concerning all the browsers are showing not secure…
I have a ubnt cloud also and ubiquiti integrated lets encrypt into the program so setup is VERY simple and shows secure.

Reply Report
alexdo October 5, 2019

Hello, @cdsolutions

Your SSL Certificate is fine, you can check it via this link - https://www.sslshopper.com/ssl-checker.html#hostname=unifi.cdsolutions.net

At the moment unifi.cdsolutions.net is redirecting to the https version itself, so everything appears to be fine, except for the fact the page loads the default apache page.

If you have concerns about the SSL Certificate, there is no need to worry.

Reply Report
jasonjpeters October 5, 2019

Does your webserver have a 301 non-ssl -> ssl redirect in it?

For my configuration using NGINX that would look something like this…

server {
  listen 80;

  server_name domain.name;

  ... 

  location / {
    return 301 https://www.domain.name$request_url;
  }

  ...
}
Reply Report
  • cdsolutions October 5, 2019

    not that I am aware of.... The lets encrypt ssl worked for the initial 90 days but at around renewal time is when it stopped. Looking at the SSL Lab report all is green and show updated dates / all green. Server is Ubuntu 16.04 - I can even run the command sudo certbot renew –dry-run and shows no errors… all good. Im VERY new at linux… Thank you to all who help.

    Reply Report
cdsolutions October 5, 2019

That was it… I needed to open site with out the port at the end and get the default page. Now we are showing secure. Thanks!

Reply Report

Related

Looking for something else?

Ask a new question Search for more help