I really don’t know enough about this at all so asking for help! Thanks in advance for any help with this.
I inherited this site from a friend and see that there is an SSL good foor another ~80 days issued through Let’s Encrypt and I’m trying to figure out why the URL box doesn’t display as secure in all situations. In most cases when I visit the site, the URL box reads “Not Secure” before displaying the URL
So you have 8 https connections, but all use two certificates:
CN=sustainableleads.com
30.01.2019
30.04.2019
expires in 80 days sustainableleads.com - 1 entry
CN=www.sustainableleads.com
30.01.2019
30.04.2019
expires in 80 days www.sustainableleads.com - 1 entry
and all https connections are secure.
So there is no wrong certificate, no insecure connection found. But if you don't have a redirect, then http + www isn't redirected -> this is unsecure.
So add redirects in the correct order:
First redirect http + non-www -> https + non-www and http + www -> https + www.
Then select one preferred version and redirect from your not-preferred version to your preferred version.
PS: You have small mixed content warnings.
link
canonical
http://www.sustainableleads.com/
This is inconsistent, if you use https, you don't want a http as canonical. But browsers doesn't show this as mixed content (they should, but this is another story).
wow this is incredibly helpful. Although I do understand the basics of what you’re saying, this really isn’t my area of expertise. I’m confused (because of my limited experience) in terms of how I would actually go about changing and implementing those redirects. You described it well I just don’t know what I’m doing. Is there any way that I could hire you to fix the redirect and canonical errors? Thank you for reading