Insecured notice when visiting site sometimes
I have a website behind the Cloudflare proxy. Both the apex domain and
www subdomain are proxied.
SSL mode is set to "Full (strict)". "HSTS" (12 months, include subdomains, preload) and "Always Use HTTPS" is enabled under the edge certificates. The domain has a pro subscription.
However, sometimes, our client sees the "nortvi.com doesn't support encrypted connections" message in Chrome. They even asked ChatGPT (I know) and it also seems to be able to detect the missing certificate. This resolved itself pretty quickly.
This happened a few times and I have never been able to reproduce this myself or have had this on any other zone. Do y'all have ANY clue what might be happening here and/or how to debug / resolve this?
8 Replies
try this
go to ssl/tls > edge certs > enable "always use https"
Thanks but please read my post 😉 It is!
oh my bad
whats your minimum tls version set to
It's set to 1.2, not changed recently and users are all on modern devices from what I can tell.
Would there be a condition where this might cause a temporary issue with accessing https?
I have that exact same message sometimes on all kind of different websites, too - but only in incognito, and since I‘m using MacOS (M4 / 15.4.1)
Even pages like Microsoft 365 admin center are affected.
After confirming that everything is okay on that dialog the page loads properly and shows a valid ssl cert.
I did never bother enough to troubleshoot that, because to fix it takes two clicks until the issue occurs again, and I‘m mostly using Safari anyways.
People with same issue in 2021:
https://support.google.com/chrome/thread/129644946/error-message-your-connection-is-not-private-also-in-incognito-mode
Same issue, MacOS, Chrome, Incognito
Interesting, not using Chrome so that would explain why I'm not seeing it
And I know the person seeing it the most defintly is using Chrome and also incognito mode a lot