General SSL Questions (39 Articles)

Redsys Payment Gateway support

Redsys is a popular payment gateway. It has extensions for many e-commerce solutions like WooCommerce, PrestaShop, Magento, etc. Currently it does not support the Let's Encrypt Certificate Authority and SNI . However, we support other options for the successful usage of the Redsys payment gateway. First, the communication between the website and the Redsys payment gateway can be managed over HTTP (without an SSL certificate). Another option is to purchase a Wildcard SSL or an EV SSL certificate from the User Area->Add Services section. It comes with a dedicated IP and is issued by Globalsign. A dedicated IP will also be assigned to your account if you order the installation of an external SSL certificate in case you already have…

How to force SSL with .htaccess

If you want to force your entire website to go through https, you can add these rules to your .htaccess file: [crayon-58866db5d1457976554439/] If your site is in a subfolder, use this code: [crayon-58866db5d1466387819213/] Simply replace yourdomain.com with your actual domain…

Redirect from HTTPS to HTTP

There are some specific cases when you want to redirect particular URL or a single website to be opened through HTTP instead of HTTPS. For that purpose you should add the following rewrite rule in your .htaccess file: [crayon-58866db5d1c21383905230/] This will redirect your "https://yourdomain.com" to "http://yourdomain.com". That is, the opposite of what everyone teaches. For more details how to redirect your website from HTTP to HTTPS, please visit this article…

How to use my SiteGround SSL with my Facebook Fan Page?

On October 1, 2011 Facebook officially announced that they will require a valid SSL Certificate for all pages, applications and basically all data that is hosted outside of Facebook servers. Actually, what does this mean exactly and do you need to be concerned? The answer depends mainly on the way you use Facebook. The SSL requirement closely concerns regular users, developers and business owners. In this article we will provide some more information about what an SSL is, how different users are affected by this Facebook requirement and how to use your SSL with your Facebook Fan Page. What is an SSL Certificate? This is a security certificate and the abbreviation stands for Secure Socket Layer. This is a technique to encrypt digital information, so that users' private data is protected when transferred along computer networks. Usually, SSL certificates are used by banks, e-commerce institutions and business entities that work with confidential information. SSL is the de-facto standard for securing computer communications and it provides a certain level of peace of mind. Why Facebook decided to implement this drastic change? Facebook decided to make this change in order to protect you from having your information stolen. Hijacking requires certain skills, but it is now easier because of some recent releases of more sophisticated spying programs. The so-called Social Engineering becomes very popular among hackers and Facebook developers want to reduce the number the cases when someone's account is stoled, hacked or used by hackers. How will I be affected by the change? As we have already mentioned the answer to this question depends on the way you use Facebook. If you are a regular Facebook use and you use the platform only to check out your friends' pages and regular fan pages you will not notice any changes. If you use games or you visit special Facebook pages you may notice some SSL warnings. These warnings appear when a Facebook fan page includes content from a website which is not hosted on Facebook servers and the data is not transmitted via an SSL connection. In such cases you can simply switch to a non-SSL connection or accept to see the content without SSL. However, if you are a developer who creates special Facebook pages or a business owner you may experience some problems that will definetely affect your Facebook fan page and your visitors. The problem is related to the way data is transmitted from your website to the fan page and vice versa. For example, suppose that you have a fan page and on it you want to display in an HTML iframe a product from your e-commerce website. If your e-commerce site doesn't use a private SSL certificate your Facebook visitors will see a warning message. The problem is that most people don't understand the technical details and they simple leave such pages. In this case you need to ensure that such SSL warnings will not be displayed at all. Please check the next section of this article for more details how to use your SiteGround SSL with your Facebook fan page. How to use my SiteGround SSL with my Facebook Fan page? Now that we have already discussed the SSL problem we need to describe how to resolve it. Actually, if you have an SSL from SiteGround this is pretty easy. For example, let's suppose that on your Facebook page you want to use the following page from your site: http://mywebsite.com/products To do this you should use HTTPS instead of the default HTTP protocol. Login to your Facebook and then go to: https://developers.facebook.com/ If you have already created your application you can click on it and find the "App on Facebook" section. There is a field called "Secure Canvas URL". In this field you should type the address that you want to use but use HTTPS. For example: https://mywebsite.com/products Then find the "Page Tab" section and paste the same address in the "Secure Page Tab URL" field. Sometimes if you want to display a specific HTML document you may need to specify it too. For example if the HTML document which you want to use for your Facebook demo fan page is called "demo.html" you need to type the following address in the "Secure Page Tab URL" field: https://mywebsite.com/products/demo.html Finally, save all settings and you should not see SSL warnings when you open your Facebook fan page or application. If you have any questions or you are experiencing difficulties configuring your SSL or Facebook Fan page please let us know. We will do our best to assist you!…

How to resolve the ”The OCSP server has no status for the certificate” error?

When the secure certificate's status can not be determined through OSCP (Online Certificate Status Protocol), Mozilla Firefox displays the following error message: The OCSP server has no status for the certificate. You can avoid this error message by opening Mozilla Firefox and loading Edit -> Preferences from the menu. When the Preferences window opens click on the Advanced tab and select the Encryption subtab. On the next page click on the Validation button and make sure that the Use the Online Certificate Status Report (OSCP) to confirm the current validity of certificates check-box is not selected. Save the changes by clicking on the OK button and close the Preferences window. The pages should start loading correctly. Keep in mind that by unchecking this option the SSL Certificates will not be verified.…

My SSL has been just installed and my website is not working correctly, why?

In most cases the issue is caused by the fact that the SSL installation requires the main IP of your website to be changed to a dedicated one. The new IP needs up to 24 hours for a propagation. After the propagation ends you will be able to see your website via its primary domain without any issues. If the issue persists after this time frame you should post a ticket under our Help Desk so we can check and fix the issue for you.…

Firefox shows ‘Verified by: Not specified’ notice for my SSL certificate

Commercial/private SSL certificates are signed by trusted Certification Authorities. These organizations guarantee the content on websites using their certificates is correctly encrypted. Therefore, if your website contains unauthenticated content (i.e. it contains both secure and non-secure items ), the page you access via the secure HTTPS protocol cannot be verified. If you are using a CMS for your website, you should check its settings in order to configure all links to work with your SSL certificate. If you have a static website, you should modify all items you have in your pages to be accessed via HTTPS (images, Flash animations, movies, JavaScripts, external links, etc). Once all items on the pages are accessed through a secure connection, Firefox will correctly show your SSL certificate issuer next to the " Verified by: " field.…

SSL Error – Certificate Not Trusted

When you access a website through a secure connection, it is a common issue to get a warning ( SSL error ) that the certificate is not issued by a trusted authority. The exact warning message you will get depending on your browser is: Firefox 3 - "The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)" Internet Explorer 7 - "The security certificate presented by this website was not issued by a trusted certificate authority." Google Chrome - "The site's security certificate is not trusted!" Safari - "Authentication failed because the server certificate is not trusted." If you get one of the above warnings, this means that your browser does not trust the SSL certificate because it is not signed by a company that the browser recognizes as trusted. The two most common reasons for this warning are: * The website is using a self-signed/free SSL certificate. * The website is using a private SSL certificate but it is missing a CA (Certificate Authority) certificate. The solution in the first case is to purchase a private SSL certificate which is issued for the specific domain by a trusted authority. The solution in the second case is to have the SSL certificate reinstalled with the correct CA bundle. The CA bundle is provided by the SSL vendor and should be included in the private SSL…

How to use my WildCard SSL certificate with subdomains

In order for the WildCard SSL certificate to work properly with subdomains, a few server-side modifications should be made. If you have a WildCard SSL certificate with SiteGround , you should open a support ticket in the SSL category. Our support team will make the necessary changes so that your subdomains can work properly with your SSL certificate.…

How to order a private SSL certificate?

You can purchase a private SSL by logging in your Customer's area and going to the Order tab. For more information about our SSL offers please check this link: https://www.siteground.com/ssl_certificates.htm…

Why do I need a private SSL certificate?

With a private SSL you have a security certificate issued exclusively for your website. By using a private SSL you will avoid the annoying warning message that pops up whenever a visitor tries to access your website via a secure connection (HTTPS). A private SSL is required, if you plan to set up an online shop and receive payments online. It will also make your customers and visitors feel confident when they submit any sensitive information on your website. The private SSL price includes a private security certificate registration and set up of a dedicated IP address. You can review the SiteGround SSL offers on the following page: http://www.siteground.com/ssl_certificates.htm If you need more information about our SSL offers, or assistance on purchasing an SSL, please feel free to contact our Sales Team by phone - toll-free (US) +1.866.605.2484, or send an email to sales@siteground.com. The Sales Team is available 24/7 and will be glad to assist you with your purchase.…

How to fix the warning: site contains both secure and non-secure items?

The SSL installation covers all files and folders you have on the web hosting server. Sometimes your site includes external resources like banners from other websites, Google's adsense campaign or links to other non-secure websites. In such cases Internet Explorer and other browsers show a warning that your site contains both secure and non-secure items. To resolve this issue you will need to inspect your code closely and make sure all banners and external resources are either added through a secure connection or removed completely.…

What is the difference between shared and private SSL?

The shared SSL is installed globally on the server and all clients can use it. Its certificate is self-signed and is configured to work with SiteGround server's name. That's why it will always show a pop-up warning when used. On the other hand, the Private SSL is issued especially for your domain by a trusted authority. Browsers can validate the private SSL and will show a secure icon. SiteGround definitely recommends the Private SSL for commercial projects. For more information you can check: https://www.siteground.com/ssl_certificates.htm …

Can I order a Private SSL if my domain is not registered by Siteground?

Yes, you can order a Private SSL for a domain which is not registered by Siteground. The only requirement is to have an email "webmaster" at the domain in question. For example, you are ordering a SSL installation for mydomain.com. You will receive a confirmation email at webmaster@mydomain.com which has to be confirmed for the installation to proceed. The installation cannot be confirmed at another email.…

Is it possible to change SSL’s domain?

Unfortunately it is not possible to change the domain a SSL certificate has been issued for. This is because the SSL technology does not allow such a reconfiguration. Thus you will have to order a new SSL in case you'd like to change the domain it is issued for.…

What SSL to choose – with or without www in front of the domain?

The only thing to consider in this case is how you have configured your site. Browse for a while your site and see if the address stays with or without www in front. If the address stays with www, then your site has been configured to work with www and your SSL has to be ordered with www. On the other hand, if the address stays without www then you should order the SSL without www. Alternatively, if you are a SiteGround customer, you can order an SSL certificate which will work with both yourdomain.com and www.yourdomain.com…