My Samsung tablet powered by Andriod using the Chrome browser has decided that my website (https) connection is not private and gives the following message ‘NET::ERR_CERT_AUTHORITY_INVALID’ I can get round this issue by selecting ‘Advanced’ then ‘Proceed to g4glp.co.uk (unsafe)!
The tablet is a few years old and runs Android 7.0, but has worked fine until a week ago. Later Android versions not available for this tablet.
My mobile phone running Android 11 doesn’t have this issue nor does Windows 10’s Chrome and Edge browsers.
My web hosting company automatically renews the https certificate every 90 days and confirms it is good.
So I’ve worked out it has to be an Android Chrome issue however the Chrome browser version reports it’s up to date. There doesn’t seem to be a way to delete the browser and reinstall.
Suggestions welcome (apart from buy a new tablet!).
Thanks
Welcome to the Cumulus Support forum.
Latest Cumulus MX V3 release 3.28.6 (build 3283) - 21 March 2024
Cumulus MX V4 beta test release 4.0.0 (build 4019) - 03 April 2024
Legacy Cumulus 1 release 1.9.4 (build 1099) - 28 November 2014
(a patch is available for 1.9.4 build 1099 that extends the date range of drop-down menus to 2030)
Download the Software (Cumulus MX / Cumulus 1 and other related items) from the Wiki
Latest Cumulus MX V3 release 3.28.6 (build 3283) - 21 March 2024
Cumulus MX V4 beta test release 4.0.0 (build 4019) - 03 April 2024
Legacy Cumulus 1 release 1.9.4 (build 1099) - 28 November 2014
(a patch is available for 1.9.4 build 1099 that extends the date range of drop-down menus to 2030)
Download the Software (Cumulus MX / Cumulus 1 and other related items) from the Wiki
https issue
Moderator: daj
- saratogaWX
- Posts: 1196
- Joined: Wed 06 May 2009 5:02 am
- Weather Station: Davis Vantage Pro Plus
- Operating System: Windows 10 Professional
- Location: Saratoga, CA, USA
- Contact:
Re: https issue
If your website was using Let's Encrypt certificate, the issue may be due to the expiration and replacement of a superior CA Certificate in the Let's Encrypt chain of CAs.
See https://letsencrypt.org/docs/dst-root-c ... mber-2021/
for more info.
Checking your site does show it's a valid Let's Encrypt certificate, and my browser (Firefox) had no problem in displaying it with a closed padlock (secure).
It may be that your Android tablet's browser hasn't quite refreshed the set of root CAs yet, so the new Let's Encrypt cert is shown as not valid.
See https://letsencrypt.org/docs/dst-root-c ... mber-2021/
for more info.
Checking your site does show it's a valid Let's Encrypt certificate, and my browser (Firefox) had no problem in displaying it with a closed padlock (secure).
It may be that your Android tablet's browser hasn't quite refreshed the set of root CAs yet, so the new Let's Encrypt cert is shown as not valid.
-
- Posts: 2475
- Joined: Wed 08 Jun 2011 11:19 am
- Weather Station: Davis Vantage Pro 2 + Ecowitt
- Operating System: GNU/Linux Ubuntu 22.04 LXC
- Location: Alcaston, Shropshire, UK
- Contact:
Re: https issue
It's not the browser - it's the operating system that needs to update its root certificates. With Android 7 that is not likely to happen, unfortunately.
-
- Posts: 220
- Joined: Tue 07 Feb 2012 9:42 am
- Weather Station: Davis Vantage PRO2
- Operating System: Windows 11 Pro 64 Bit
- Location: Camberley
Re: https issue
Thanks for the link
Yes it does use Let's Encrypt. I'll try and understand the documentation!
Currently Domain Validated
Expires on November 27, 2021
freddie, that's a shame.
Thanks anyway
Yes it does use Let's Encrypt. I'll try and understand the documentation!
Currently Domain Validated
Expires on November 27, 2021
freddie, that's a shame.
Thanks anyway
-
- Posts: 220
- Joined: Tue 07 Feb 2012 9:42 am
- Weather Station: Davis Vantage PRO2
- Operating System: Windows 11 Pro 64 Bit
- Location: Camberley
Re: https issue
Well, it seems Let's Encrypt and my early Android tablet have sorted out their differences. Working back to normal.
Last edited by Dennisdg on Tue 12 Oct 2021 9:13 pm, edited 1 time in total.
- mcrossley
- Posts: 12763
- Joined: Thu 07 Jan 2010 9:44 pm
- Weather Station: Davis VP2/WLL
- Operating System: Bullseye Lite rPi
- Location: Wilmslow, Cheshire, UK
- Contact:
Re: https issue
I've had problems with my rPi install of CMX uploading to Windy - failing with an SSL error. Windy uses LetsEncrypt too. Refreshing the certs on my rPi did not seem to fix it, and removing the old DST_Root_CA_X3 cert yesterday didn't either. But today after doing nothing else it is working again!
Certs!
Certs!