Remove certificate

Timothy · June 6, 2017, 8:36am

HI,

I check my company website by web browser-IE with “https”, it mentioned that there has a SSL cert which was issued by Let’s Encrypt Authority X3 was expired. But we doesn’t apply any SSL cert for this website domain name and configure any SSL on web server.

Can somebody let me know and advice how can I remove it?

Thanks a lot !!

Timothy

danb35 · June 6, 2017, 9:14am

Not without your answers to the questions that you deleted when you created this topic.

rg305 · June 6, 2017, 9:14am

That depends…
Is it running nginx, apache, IIS, …?

Timothy · June 6, 2017, 9:44am

Thanks for reply.

Actually, the SSL cert is not created by me so I am not sure which server OS and application is using for create.

rg305 · June 6, 2017, 9:55am

OK…
What is the website?

Timothy · June 6, 2017, 10:20am

the website is: www.mindstec.com

rg305 · June 6, 2017, 11:12am

I can’t find any contact information in WHOIS and no contact information is on the site.
You could try sending an email to:
webmaster@mindstec.com; postmaster@mindstec.com; hostmaster@mindstec.com; abuse@mindstec.com
and see who responds.
But if you work at the company…
Don’t you know who runs the IT and who controls the server at:
Name: mindstec.com
Address: 67.209.115.156

Someone with server admin access made the changes and only a web server admin can undo the changes (HTTPS bindings).

Timothy · June 7, 2017, 12:58am

I checked with the website hosting company, they reply me doesn’t setup and applied this certificate…

But due to this is outsource website hosting company, there is unable to check their server configure and only able to trust their reply…

Does any way to check the certificate is issued by their server?

schoen · June 7, 2017, 1:18am

Hi @Timothy,

“Issued” has a specific meaning in the context of certificates; it refers to the original creation of the certificate by the entity that signed it (which is the Let’s Encrypt certificate authority).

It is not possible for an outsider to determine who was responsible for requesting and installing the certificate. That would have been someone (possibly including a computer program) responsible for setting up the web server software on the 67.209.115.156 machine. Nonetheless, that particular machine—apparently hosted by “A2 web hosting”—currently contains a copy of that certificate and is actively serving it to people who visit the site over HTTPS. Again, we don’t know who originally set it up that way, but nonetheless, it has been set up that way somehow.

To put this another way in terms of the hosting company, the hosting company might not have requested or installed the certificate and might not know that it was there, because someone else (maybe previously working for your company) might have done that. Despite this, the certificate is located on the hosting company’s machine now, whether through the hosting company’s action or not.

(Also, if the certificate were properly renewed, the expired certificate error would go away. Depending on the software in use on the server, it might be relatively easy to renew the certificate and set it up to be renewed automatically in the future.)

Timothy · June 7, 2017, 1:51am

Thanks for your information, I will double check with my web service provider are they using this hosting company or not.

system · July 7, 2017, 1:51am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Disconnecting ssl certificate Help	3	631	February 9, 2021
Issued Certificates Issuance Policy	2	1257	November 4, 2016
Existing sites serve incorrect certificate after new cert/site added Help	3	610	July 9, 2020
Removing a certificate for a domain Help	4	572	October 11, 2019
Changing servers, and removing cert Server	5	2759	December 4, 2016

Remove certificate

Related topics