Certificate installed ok but error in all browsers

Certificate installed fine and redirect from http to https seems to work but all browsers seem to give a warning about the certificate. Any advice to fix this would be much appreciated, thanks.

My domain is: allskinmed.co.uk

I ran this command: sudo certbot --apache -d allskinmed.co.uk -d www.allskinmed.co.uk

It produced this output:

Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for allskinmed.co.uk
http-01 challenge for www.allskinmed.co.uk
Waiting for verification…
Cleaning up challenges
Created an SSL vhost at /etc/apache2/sites-available/allskinmed-le-ssl.conf
Enabled Apache socache_shmcb module
Enabled Apache ssl module
Deploying Certificate to VirtualHost /etc/apache2/sites-available/allskinmed-le-ssl.conf
Enabling available site: /etc/apache2/sites-available/allskinmed-le-ssl.conf
Deploying Certificate to VirtualHost /etc/apache2/sites-available/allskinmed-le-ssl.conf

My web server is (include version): apache 2.4.41

The operating system my web server runs on is (include version): Ubuntu 18.04

My hosting provider, if applicable, is: DigitalOcean

I can login to a root shell on my machine (yes or no, or I don’t know): Think so

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): No

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): 0.31.0

Hi @aestheticare

check the output of allskinmed.co.uk - Make your website better - DNS, redirects, mixed content, certificates

Your certificate - ok, one certificate with both domain names.

Your connections - ok, both connections (www and non-www) use the certificate, both connections are secure.

But you have mixed content - http ressources.

Two images and one css. Loaded via https, but that css contains http ressources.

https://allskinmed.co.uk/wp-content/uploads/dynamic_avia/avia-merged-styles-9c4a51de1977d432149efdbb8d40ad07.css

http://allskinmed.co.uk/wp-content/themes/enfold/images/layout/fake_facebook.jpg

Thanks Juergen, I will look into that. However, Chrome states this:

Certificate - missing

This site is missing a valid, trusted certificate (net::ERR_CERT_AUTHORITY_INVALID).

Connection - secure connection settings

The connection to this site is encrypted and authenticated using TLS 1.3, X25519, and AES_128_GCM.

Resources - all served securely

All resources on this page are served securely.

Share a screenshot. FireFox + Chrome - the certificate is ok. May be you have an old cache or an Anti-Virus-software, that replaces the certificate and is a Man in the middle.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.