I can only see the padlock icon in some parts of my site

help.desk · July 27, 2020, 6:49pm

I installed win-acme and it was able to create my certificate successfully but when I go to the home of my site https://www.cimet.com, the home does not appear with the padlock.
But note that some sections do have it, for example https://www.cimet.com/rse/

Could someone tell me or guide me why this is.

I ask for patience I am new to this.
Thank you very much

My domain is: www.cimet.com

I ran this command: wacs.exe

It produced this output: successful

My web server is (include version): IIS 10

The operating system my web server runs on is (include version): Win Server 2019 std

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): win.acme 2.1.9

JuergenAuer · July 27, 2020, 6:53pm

Hi @help.desk

read your check, ~~15 minutes old - https://check-your-website.server-daten.de/?q=cimet.com#html-content - Mixed content, Grade I.

2 images, 9 script elements

http://www.cimet.com/js/bootstrap.min.js

that's your blocked content.

And that's

http://www.cimet.com/img/slide-1.jpg

your mixed content.

help.desk · July 27, 2020, 7:12pm

If I remove this content (http://www.cimet.com/img/slide-1.jpg) will the page appear Safe?

JuergenAuer · July 27, 2020, 7:14pm

That’s the wrong way.

Change it to https.

You have tons of wrong links, not only one.

help.desk · July 27, 2020, 7:17pm

so I should change http://www.cimet.com/img/slide-1.jpg to https://www.cimet.com/img/slide-1.jpg is it correct?

help.desk · July 27, 2020, 7:30pm

Sorry for the inconvenience but as I said I am new to this. How do I change it to https?

I already thank you for your attention

Rip · July 27, 2020, 8:05pm

@help.desk

This is technically outside the scope of this forum.
How did you create your website to begin with?
Use the same technique(s) to change all references from http:// TO https://

The short answer to your question is YES.

All of the resources served from your website on every page should be served over HTTPS.

Hope this helps!
Rip

JuergenAuer · July 27, 2020, 8:09pm

I don't know how you have created that website. If this is a CMS, it's CMS specific.

But if you want to use a certificate, all resources must be included via https.

help.desk · July 27, 2020, 8:12pm

It is the website of the company where I started working a few months ago, the people who developed it migrated to this server but there is not much contact.
Since I did not have a searched certificate I found letsEncript that on an Ubuntu server it worked ok, but when I used it on this server I ran into these problems.

help.desk · July 27, 2020, 8:45pm

How can I see the content of the screenshot that you sent me (web or application). Ais I can see or I have to change.

Thank you so much for everything

system · August 26, 2020, 8:45pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.