x
Beta Member

SSL no longer working

Today it seems that my site is no longer secure, at least according to Chrome and Safari. The certificate is not valid.

 

I've tried the general advice i.e. to unpublish and republish the site, to clear my browsing history, check system dates etc etc but it's still showing as insecure. I also tried using incognito.

 

According to the certificate the root has expired.

 

Unfortunately this is appearing to my customers, so it's not just a 'me issue'.

 

Any help appreciated! 

 

www.juliehollis.co.uk

 

 

1,842 Views
Message 1 of 11
Report Inappropriate Content
2 Best Answers
Beta Member

Best Answer

Hi Tra

 

OK well I've been researching this issue myself and the answer can be found here: Global issue caused by expired Let's Encypt certificates 

 

It seems that because I have an older version of OSX some certificates are just appearing as invalid.

 

As a quick fix I downloaded an older version of Firefox, which worked fine, but then I noticed in the comments that there was a permanent fix which involves installing a self-generated root certificate. I've done that, following the instructions, and my site is now showing up as secure.

 

Short story is that I've fixed the issue! It might be worth making other users aware of the possible issue though if, like me, they are using older OS.

 

Cheers!

View Best Answer >

1,796 Views
Message 8 of 11
Report Inappropriate Content

Best Answer

I had this problem and spent most of a day trying to fix it. I kept getting the response that un publishing and republishing would work - it didn't. The annoying thing is that the site was working with a valid SSL cert and stopped randomly one day. We have the pro package, bank account was set up and verified and stock was for sale, so none of those issues.

 

Our issue was that our domain is hosted externally (123 Reg in our case) and the error is a result of Square's DNS requirements not being as clear as they should be.

 

What worked for us was going to the Control Panel > Manage Domain > Manage DNS > Advanced DNS on 123 Reg (not on Square).

 

We then reset DNS to default to clear any entries made which might have been corrupting.

 

Three changes then fixed it:

 

1.Change the @ A entry destination to 199.34.228.164

2. Change the * A entry destination to 199.34.228.164

2. Change the www A entry to point at your full website - www.mysellingsquarewebsite.co.uk or whatever your domain is and change the destination to 199.34.228.164

 

Point 3 is the one where we were falling down as Square's own settings show a "successful" configuration that just shows "www" as the setting - when we just typed www and nothing else the site was there, but as it was not configured correctly it was hidden behind the not secure - visit at your own peril message. To make it worse it worked like that on some browsers but not others (!)

 

To be fair on 123 Reg's DNS page "www" is all that is shown when I go to DNS records - I entered the full www site and saved it, but it isn't shown like that when I go back - all I know is that just www doesn't work universally whilst www.fullwebsite.whatever does 

 

Might only work on 123 Reg, but if it saves one person all the messing around I had then happy days

View Best Answer >

1,502 Views
Message 10 of 11
Report Inappropriate Content
10 REPLIES 10
Beta Member

Also a lot of the image links are broken, even though they appear correct in the editing suite.

1,839 Views
Message 2 of 11
Report Inappropriate Content
Admin

I had a quick look at the site on my end here @PAINTERGIRL21 and it's coming up as secured on both my laptop and computer. The images seem to be loading for me as well.

 

Screenshot 2021-10-07 at 17.00.20.png

 

Screenshot 2021-10-07 at 17.00.26.png

 

Image from iOS.jpeg

 

 

I also had a look at the DNS records and it's setup correctly. The only thing left I can think of is if the Square Online plan subscription is still active? This can affect a site's visibility as well. You can always check this under Account Settings > My Services

 

If everything is setup and the site is still coming up as unsecured, can you let me know:

  • The exact version of your web browser. To find this, visit whatwebbrowser.com.
  • Confirm the device youโ€™re using (PC, Mac, iPad, Android device, etc.)
  • Include any applicable images or screenshots of errors youโ€™re seeing. For instructions on how to take a screenshot, visit take-a-screenshot.org.
Tra
Community Manager, Square
Have a burning question to ask in our Question of the Week? Share it with us!
1,839 Views
Message 3 of 11
Report Inappropriate Content
Beta Member

Hi Tra

 

Thank you! I checked my services and the Square Online plan was not active. I haven't found out how to activate it, but as I'm using a custom domain I've signed up to the Personal Plan which I'm guessing is what you mean?

 

Last year I'd signed up for far more than I needed and this year I was trying to figure out what was the least I needed! I guess I'd gone below what was The Least!

 

 

1,820 Views
Message 4 of 11
Report Inappropriate Content
Admin

If you're having trouble activating the Personal Plan, it's worth contacting our Support team directly @PAINTERGIRL21! They'll be able to double-check and help troubleshoot this on the phone. We should be able to help get this resolve before the weekend. 

Tra
Community Manager, Square
Have a burning question to ask in our Question of the Week? Share it with us!
1,819 Views
Message 5 of 11
Report Inappropriate Content
Beta Member

I had no problems activating the Personal Plan, I just wasn't sure if I needed it. However it hasn't helped with this issue.

 

I have cleared my browser data and rebooted it, I've republished my site, even unpublished and published again, but this is what I see. I have other customers reporting the same thing. Since doing that the photographs are at least loading and, once I've agreed to take the chance and load an unsafe website, I skip that screen. However the browser is still showing the site as insecure. JHA2.jpgJHA.jpg

I'm using Chrome 94 on a Mac running El Capitan 10.11.6. I've also tried Safari, but it's an old version. The results are the same however. 

 

CertJHA.jpg

โ€ƒI've checked the date and time settings and they are correct. 

 

1,803 Views
Message 6 of 11
Report Inappropriate Content
Admin

I'm still seeing the site as secured on my end and my team are unable to reproduce the issue as well. I've asked our ECOM specialist team to take a further look into this.

 

In the meantime, can you try accessing the site on a different device and see if the error still comes up?

Tra
Community Manager, Square
Have a burning question to ask in our Question of the Week? Share it with us!
1,802 Views
Message 7 of 11
Report Inappropriate Content
Beta Member

Best Answer

Hi Tra

 

OK well I've been researching this issue myself and the answer can be found here: Global issue caused by expired Let's Encypt certificates 

 

It seems that because I have an older version of OSX some certificates are just appearing as invalid.

 

As a quick fix I downloaded an older version of Firefox, which worked fine, but then I noticed in the comments that there was a permanent fix which involves installing a self-generated root certificate. I've done that, following the instructions, and my site is now showing up as secure.

 

Short story is that I've fixed the issue! It might be worth making other users aware of the possible issue though if, like me, they are using older OS.

 

Cheers!

1,797 Views
Message 8 of 11
Report Inappropriate Content
Admin

I'm glad to hear that @PAINTERGIRL21 and thank you so much for sharing that tips. I've marked your reply as a Best Answer as well so it'll be easier for other sellers to find it. 

Tra
Community Manager, Square
Have a burning question to ask in our Question of the Week? Share it with us!
1,795 Views
Message 9 of 11
Report Inappropriate Content

Best Answer

I had this problem and spent most of a day trying to fix it. I kept getting the response that un publishing and republishing would work - it didn't. The annoying thing is that the site was working with a valid SSL cert and stopped randomly one day. We have the pro package, bank account was set up and verified and stock was for sale, so none of those issues.

 

Our issue was that our domain is hosted externally (123 Reg in our case) and the error is a result of Square's DNS requirements not being as clear as they should be.

 

What worked for us was going to the Control Panel > Manage Domain > Manage DNS > Advanced DNS on 123 Reg (not on Square).

 

We then reset DNS to default to clear any entries made which might have been corrupting.

 

Three changes then fixed it:

 

1.Change the @ A entry destination to 199.34.228.164

2. Change the * A entry destination to 199.34.228.164

2. Change the www A entry to point at your full website - www.mysellingsquarewebsite.co.uk or whatever your domain is and change the destination to 199.34.228.164

 

Point 3 is the one where we were falling down as Square's own settings show a "successful" configuration that just shows "www" as the setting - when we just typed www and nothing else the site was there, but as it was not configured correctly it was hidden behind the not secure - visit at your own peril message. To make it worse it worked like that on some browsers but not others (!)

 

To be fair on 123 Reg's DNS page "www" is all that is shown when I go to DNS records - I entered the full www site and saved it, but it isn't shown like that when I go back - all I know is that just www doesn't work universally whilst www.fullwebsite.whatever does 

 

Might only work on 123 Reg, but if it saves one person all the messing around I had then happy days

1,503 Views
Message 10 of 11
Report Inappropriate Content
Admin

Thanks for sharing those tips with the Seller Community, @PhilMarston

 

Glad you got sorted and this post will definitely be helpful for other 123 Reg users in future, I've marked it as a best answer so it's the most visible when accessing the thread ๐Ÿ‘

Breffni
Community Moderator, Ireland, Square
Sign in and click Mark as Best Answer if my reply answers your question โœจ
1,499 Views
Message 11 of 11
Report Inappropriate Content