×
Browser warnings
Symptoms
- The browser displays a series of warnings, such as an icon with an exclamation point next to the address bar.
- Warning messages on the console tool developers, or the details of the certificate in the browser with messages like “The website contains unencrypted elements”, “Mixed content”, etc. are displayed
Possible cause
Your website is offering insecure content, for example images, scripts, CSS files, etc.
Possible solution
Replace all content in the http prefix https. For example if an image is to http://www.redalia.es/imagen1.jpg should make it https://www.redalia.es/imagen1.jpg. A good practice is to avoid putting the protocol prefix, and so always sent according to the protocol being employed in our example would be to use right //www.redalia.es/imagen1.jpg
×
Error in the period
Symptoms
- The browser displays an error message about the period of the certificate.
Possible cause
Your certificate has expired or is not yet valid.
Possible solution
If the certificate has expired, you must renew as soon as possible so that error message disappears and your customers can visit your website normally. If it is still invalid because the start of validity period has not yet been reached, wait until then, or hire a certificate for the previous period.
×
Certification authority error
Symptoms
- The browser displays an error message indicating that the entity that issued the certificate is not trusted.
Possible cause
“Intermediate” certificates not propperly installed
Possible solution
Sigue los pasos que encuentras en nuestra documentación para la correcta instalación del certificado con los intermediates incluidos.
×
Domain error
Symptoms
- The browser displays an error message indicating that the domain is not valid for the certificate.
Possible cause
The certificate installed on this website, has not been issued for the domain in which it is located.
Possible solution
Reedite su certificado para que sea emitido con el dominio correcto. Si el certificado ha sido emitido por Redalia, puede hacerlo accediendo a su panel de control, en la sección de certificados, y haciendo clic en el botón de reeditar que encontrará a la derecha de su certificado
General
SSL (Secure Socket Layer) is a security protocol that allows you to provide privacy and data integrity between two communicating computer applications. This is something especially important when sensitive information is being transmitted.
An SSL certificate is an electronic signature that implements the SSL protocol and certifies the ownership of a public key by the named subject of the certificates.
First, the prefix of the address of the web page will change from http to https. Moreover, the vast majority of browsers will display next to the address an icon with a padlock, and where we can click to view the certificate data.
Las autoridades de certificación (CA) que son proveedores autorizados para ello. Los más reconocidos a nivel mundial son: Symantec, Geotrust, Thawte, RapidSSL y Comodo.
Existen distribuidores registrados y autorizados para emitir certificados emitidos por las CA, como es el caso de Redalia.
Because they have installed an Extended Validation certificate. This kind of certificates provide privacy and data integrity but they also validate information about the organization behind that website. The green bar brings a stronger sense of security to the end user.
There is widespread list of certificates both with price and with performance range, and each one of them is tailored to the needs of a website. In Redalia you have at your disposal two tools that can help you to choose which certificate is the one that best suits your needs. Use ourcomparator to compare the features of the different certificates or our Wizard to help you to choose the one that suits you. You can also contact our team of specialists by phone at this phone number: (34) 91 290 88 97 which will advise you personally to choose the product that best suits your needs.
If you purchased your certificate in Redalia and it is in renewal period (1 month before and 1 month after the expiration date), you can renew it from your dashboard, by simply login. Just click on the option that you can find on the right of the listed certificates, and follow the steps.
Types of certificate
There is a wide range of certificates both in price and performance.
First, they can be classified by the number of domains that can validate:
Second, certificates can be classified according to the type of validation that have:
- Validación por dominio: solamente se valida el dominio de la web en la que se instalará el dominio (normalmente a través del envío de un correo electrónico a una dirección relacionada con el dominio.
- Validación de Organización: Se valida además del dominio, toda la organización que hay detrás.
- Validación Extendida: Se realiza una validación más extensa de la organización y hace que los navegadores muestren una barra verde junto a la dirección de la web.
También se pueden clasificar por marcas. Las más importantes son
Symantec,
Geotrust,
Thawte,
RapidSSL y
Comodo.
Sí, existen certificados que admiten ser usados para distintos dominios aunque no compartan dominio base, por ejemplo www.redalia.es y google.com podrían ser securizados con un mismo certificado multi-dominio (SAN).
Un certificado con soporte SAN (Subject Alternative Name) te permite usar un mismo certificado para diferentes dominios, por lo que la gestión es simplificada y además sale por un precio mejor que comprando varios certificados.
Un certificado SSL es asignado a un único nombre de dominio (FQDN), por ejemplo "www.redalia.es". Esto significa que el certificado no securiza los subdominios "clientes.redalia.es" o "pagos.redalia.es". Para solventar este problema están disponibles los certificados Wildcard, que aseguran ilimitados subdominios que compartan el mismo dominio base, siguiendo con el ejemplo, en este caso el certificado se tramita para el nombre "*.redalia.es" y securizaría todos los subdominios existentes en ese dominio base.
Un certificado con Validación Extendida no sólo certifica que las transacciones en esa web son seguras, sino que va un paso más allá y valida de una forma más manual y humana que la organización que hay detrás de la web es segura y que los datos de la organización coinciden con lo encontrado en esta certificación especial.
Muestran en la barra de direcciones una barra verde que da mayor sensación de seguridad al usuario final. Son certificados esenciales para bancos y empresas con gran influencia en internet.
A certificate SGC (Server Gated Cryptography) ensures maximum encryption even for old and obsolete browsers, so that it is recognized by any browser or operating system.
Previously it was a very good choice as there were many browsers that did not support a higher encryption. Currently it is highly not recommended.
Technical
First, make sure you have correctly followed all our steps in our documentation when you install it. If you’ve done it, and you still have an error in your certificate, use our tool verification that can help you to find the problem more easily. If you still can not find the solution, we show you some problems and their possible solutions:
Most certificates are issued by companies that have their own authority Trusted Root, what is this? Trusted Root Certificate Authority is known for browsers and ensures that the website is safe. The browser trusts it because that authority has a reputation for years and has guaranteed secure sites without errors.
Some certificates issuers do not have a Trusted Root authority itself, so they use chain certificates (Chained Root) or so-called intermediaries to be recognized. This is nothing to worry at all, because in the end the browser trusts a Trusted Root Authority with credibility gained over time, which ensures that the final certificate is using the propper Trusted Root.
Depende del tipo de servidor, en la gran mayoría con exportar los archivos del certificado al nuevo es suficiente, usando para ello una copia de seguridad o backup, sin necesidad de otros pasos. Si esto fallara siempre se puede pedir una reedición de certificado desde tu panel de control de Redalia, generando otro CSR distinto, verás la opción disponible si tu certificado está aún vigente y no ha caducado.
First you should contact your administrator system or hosting service, maybe you can get it from any backup made previously. If this is not possible, you can reissue your certificate from your dashboard and another key with a new CSR will be generated.
The CSR (Certificate Signing Request) is a fully encrypted text block that includes information about the person or company requesting the certificate, such as domain name, city, country ... This CSR will be used by the issuing certificate authority to create your SSL certificate so that only may be used for the data provided in the CSR.
If you do not know how to create your CSR do not worry, in Redalia you can generate it when you are buying your certificate, so you will not have to make any extra step, in addition you have a tool to generate CSR.
The processing period is variable depending on the product. Some licenses could be processed in a few minutes if no error occurs in the data given by the customer, since the entire process is automatic. And there are others like EV certificates which by their nature, require a more thorough validation, including a possible phone call from the issuer to verify that the organization requesting the certificate is who he claims to be.
ES