For the website scirra.com (click for SSL Labs Server Test Results) Google Chrome reports the following icon:
It's an EV SSL, and it seems to work fine in Firefox and Internet Explorer, but not Chrome. What is the reason for this?
chromesslssl-certificate
For the website scirra.com (click for SSL Labs Server Test Results) Google Chrome reports the following icon:
It's an EV SSL, and it seems to work fine in Firefox and Internet Explorer, but not Chrome. What is the reason for this?
Best Answer
What you see is now is not the "green address bar" you would expect with an EV certificate, but the following:
The reason for that is the following announcement on the Google Online Security blog:
The "secure but with minor errors" is indicated by the warning sign in the padlock and outdated security settings in the extended message are the fact that the certificate relies on the SHA-1 hash algorithm.
What you need to do is the following:
Generate a new private key with a SHA-256 hash and a new Certificate Signing Request (CSR) and get your SSL provider to re-issue you with a new certificate. With EV certificates a re-issue typically requires more or less the same hoops you had to jump through to get the certificate initially, but you should get a new certificate valid until the same expiry date of the current certificate at no/little additional charge.
In openssl you would use something like the following command line: