Expired Certificate warning

We are receiving an expired certificate warning on all browsers and unsure what to do or why it has happened.

This is on modelco.com

We have the DNS pointed to Cloudflare

Your DNS settings for ā€˜wwwā€™ and ā€˜modelco.comā€™ are with grey cloud (or your whole domain is with ā€œCloudflare pausedā€) - so your domain points directly to your origin server. Your origin server has a Letā€™s Encrypt certificate. The currently served certificate is indeed expired. This cert was renewed somewhere (https://crt.sh/?id=1075197770 and https://crt.sh/?id=1075197998) but not applied on this HTTPS server; Perhaps it was not placed in the right place, perhaps all that is needed is a web server config reload; Anyway, thatā€™s why thereā€™s a certificate warning - itā€™s not related to Cloudflare.

Should you re-enable Cloudflare service for the domain and www subdomain, thereā€™s a cert which is non-expired that will probably show up: crt.sh | 1039930195

1 Like

Thanks for the response Shimi.
We changed the the orange cloud and now see the site correctly. Strange this suddenly happenedā€¦

While the solution was successful, I have to tell you that your are most likely on a Flexible (or at best Full) setup. That is not really safe for the content of the site and eventual private info that are sent or may be sent due to MITM. You should really renew the certificate (or put one from Cloudflareā€™s Origin Certificates) to move the SSL setting to Full (Strict).

4 Likes

This topic was automatically closed after 30 days. New replies are no longer allowed.