"Always use HTTPS" not enabled

user13612 · May 27, 2023, 9:40pm

I get this warning even though “Always use HTTPS” is enabled, and there is a valid 301 redirect.
Here is the error in Security Center:

And here is the result from securityheaders.com without following the redirect:

And this is the SSL/TLS Edge Certificates setting for the site:

cherryjimbo · May 27, 2023, 10:59pm

When did you enable it? It looks like from that screenshot, that scan/report is from ~10 days ago, on the 16th May.

If you’ve since fixed it, then it shouldn’t show as an issue again in the next scan/report.

user13612 · May 27, 2023, 11:34pm

That could be the issue, but it seems like new scans aren’t updating the results.

But the date on the results is sill May 16th.

Topic		Replies	Views
Will disabling "Always use HTTPS" for edge certificates make my website more vulnerable Security	19	2992	February 15, 2022
SSL issue in the site comes through as not secure Security	12	824	July 6, 2023
CF Keeps redirecting http to https Security	6	967	September 20, 2023
How can I redirect my insecure pages to secured one? Security	4	900	June 11, 2023
Always Use HTTPS missing from Page Rules after error Security Center	1	1161	January 16, 2023