Google sent me a ssl notice "certificate cannot be trusted"


(Sarthak Upadhyay) #1

hello, i installed ssl for my website from godaddy.

Now google sent me the ssl notice-

the notice is:
"Google has detected that the SSL/TLS certificate used on web is self-signed, which means that it was issued by your server rather than by a Certificate Authority. Because only Certificate Authorities are considered trusted sources for SSL/TLS certificates, your certificate cannot be trusted by most of the browsers. In addition, a self-signed certificate means that your content is not authenticated, it can be modified, and your user’s data or browsing behavior can be intercepted by a third-party. As a result, many web browsers will block users by displaying a security warning message when your site is accessed. This is done to protect users’ browsing behavior from being intercepted by a third party, which can happen on sites that are not secure.

If you have already replaced your TLS certificate, you can ignore this message. Thank you for making your website safer for your users.

Recommended Action:
Get a new certificate

To correct this problem, you need to get a new, dedicated SSL/TLS certificate from a trusted Certificate Authority (CA). This certificate must match your complete site URL, or be a wildcard certificate that can be used for multiple subdomains on a domain."

can you please update me to solve problem because i’ve bought standard ssl from godaddy.


(Jumedeen khan) #2

According to ssllabs.com your certificate works only in browsers with SNI support Means ye all browsers support nahi kar raha hai matlab aapne ssl sahi se install nahi kiya hai. Solution btane se pahle mujhe kuch aur information chahiye.

  1. Aapki site kaha par host hai.
  2. Aap konsa server use karte hai Nginx ya Apache.
  3. Kaunsa SSL use kar rahe ho.
  4. Aapne kis process ko follow kar SSL install kiya hai.

After that main aapko sahi se guide kar sakta hu.


(Sarthak Upadhyay) #3

yes, these are the answers of your question mentioned above.
1.bigrock ki hosting hai.
2 apache use kar raha hu.
3. godaddy ka standard plan kharida hai maine.
4 jis process ko maine follow kiya uski link ye hai- http://support-tools.com/?4da4e848f40c9e14#0kHisRBuI1qRaVPN/y1zzfnYe39Ihr2KDgmizFgQXF4

ye process maine hosting provider se poochi thi. usi ne ye link diya tha


(Jumedeen khan) #4

Guideline bilkul sahi hai. Aapne install sahi se nahi kiya hai. Godaddy se aapko 2 file milti hai 1. intermediate certificate and 2. ssl bundle. Is guideline me ye nahi btaya gya hai yahi aapse galti huyi hai. aapne sirf bundle use kiya hai ya sirf intermediate certificate aapko dono use karne hai.

Godaddy customer care me call karke unhe ye guideline dikhao aur pucho ki main kis tarah se ssl upload karu.


(Sarthak Upadhyay) #5

maine contact kiya to nhone kaha ssl sahi install hai aur jyada jankari ke liye apne bigrock se contact karo.
maine dono file install kiya hai.

poori process sahi hai.
phir bhi ye notice.

maine bigrock se bat ki to aha ssl poori tarh se sahi se install hai. ye sab ke baad bhi ye message.
kya mai is message ko ignore kar doo, ya dobara se ssl install karu


(Jumedeen khan) #6

No, SSL bahut se browsers ko support nahi kar raha hai ise ignore nahi kar sakte. Main godaddy standard ssl hi use karta hu aap ssllabs.com par dono ko compare karke dekh le. Otherwise aapko new ssl le kar use karna hoga.