Wordpress plugins using Lets Encrypt shows insecure certificate on some browsers

ijurugsoft · September 29, 2020, 3:58pm

Hi,
I am a developer and getting this error on installing ssl using wordpress plugins which offer it for free. The error given in sslshopper is the certificate is not trusted in all web browsers. You may need to install an Intermediate/chain certificate to link it to a trusted root certificate. Learn more about this error. The fastest way to fix this problem is to contact your SSL provider. for and srisriayurvedahospital.org the same works fine on www.qmii.com and www.ijurugsoft.com, Any way to quick fix. Its lets encrypt certificates. thanks

griffin · September 29, 2020, 4:59pm

Welcome.

I can provide you with a link to the intermediary certificate.

https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.pem

edit:
Taking into account @JuergenAuer's excellent suggestion below, you can transform your certificate file into "fullchain.pem" as follows:

Download the intermediary certificate file using the link above.
Open your current certificate file and the intermediary certificate file in a text editor.
Add a blank line at the bottom of your certificate file.
Copy-and-paste the contents of the intermediary certificate file to the bottom of your certificate file.
Save your modified certificate file.

JuergenAuer · September 29, 2020, 4:59pm

Hi @ijurugsoft

if you have that error, check your certificate installation.

Looks like cert.pem is used. Use fullchain.pem instead.

ijurugsoft · September 30, 2020, 7:20am

First of all thanks for taking time and helping out. I did all the steps given by you.
But still the same error. What could be the reason.? thanks so much!

The certificate is not trusted in all web browsers. You may need to install an Intermediate/chain certificate to link it to a trusted root certificate. Learn more about this error. The fastest way to fix this problem is to contact your SSL provider.

$\ 128x128$ Common name: srisriayurvedahospital.org
SANs: srisriayurvedahospital.org
Valid from September 29, 2020 to December 28, 2020
Serial Number: 03933847836020e6a975c105844dbac8aa69
Signature Algorithm: sha256WithRSAEncryption
Issuer: Let's Encrypt Authority X3

griffin · September 30, 2020, 7:30am

Try using this one:

fullchain.pem (3.8 KB)

ijurugsoft · September 30, 2020, 7:48am

Thanks for all your help. I hate to say it did not work.
I followed all the steps and added that fullchain certificate after blank line after the sites .pem

griffin · September 30, 2020, 7:49am

Use the fullchain.pem I have provided above instead of your existing certificate. It is fully tested and contains everything you need.

system · October 30, 2020, 7:49am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.