Certificate untrusted, but all looks fine in ssllabs?

Hi all,

I’m a rookie to ssl and what not, so I followed the installation guide and used Certbot for easy installation. All went well (at least that’s what I thought), but upon visting a site with my url I get the warning that it’s not trusted(on all browers the same).

I’ve checked it with ssllabs and compared it to letsencrypt.org, and the only thing that’s different is this line: "TLS_RSA_WITH_3DES_EDE_CBC_SHA (0xa) WEAK, which I’ve no clue of what it means.

So if anyone could explain or help me out in dummy language that would be great!

Thank you in advance.

My domain is: www.discountcoupons.ae

My operating system is (include version): ubuntu 16.04

My web server is (include version): Apache

My hosting provider, if applicable, is: DigitalOcean

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no

Hi @moonut,

Your site http://www.discountcoupons.ae redirects to https://www.discountcoupons.ae/ and this redirects to https://discountcoupons.ae/.

You have created 2 independent certificates, one only for domain www.discountcoupons.ae and other one for discountcoupons.ae. You can view them here https://crt.sh/?q=%discountcoupons.ae but the problem is… for VirtualHost discountcoupons.ae you have configured your apache to serve the certificate for www.discountcoupons.ae so you need to configure correctly the VirtualHost for discountcoupons.ae to point to the right certificate.


Hi @sahsanu,

Thank you for your reply!

So what is the simplest way of solving this?

Completely re-install let’s Encrypt and enter the correct domain during installation?

Thanks again for your help.


The simplest way to solve it is configure the virtualhost for discountcoupons.ae to point to its right cert instead of the cert for www.discountcoupons.ae.

The other option is to create a cert that contains both domains and point both to the same cert.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.