See how Kinsta stacks up against the competition .
Some of these for the everyday WordPress user can be downright thwart and even chilling at times. Depending on the type of mistake it could besides mean downtime for your web site, which means you ’ re losing money. Or it might just be that the browser on your computer needs fixing.
today we ’ rhenium going to dive into the “ your connection is not private ” error and walk you through some ways to get things working again. Read more below about what causes this error and what you can do to prevent it in the future .
What Is the Your Connection is Not Private Error?
The “ your connection is not individual ” error only pertains to sites that are running over HTTPS ( or should be running over HTTPS ). When you visit a web site, your browser sends a request to the waiter where the site is hosted. The browser then has to validate the certificate installed on the site to ensure it is up to current privacy standards. early things that besides take stead include the TLS handshake, the certificate being checked against the certificate authority, and decoding of the security .
If the browser finds that the certificate international relations and security network ’ thymine valid, it will automatically try to prevent you from reaching the web site. This feature of speech is built into web browsers to protect the exploiter. If the certificate international relations and security network ’ deoxythymidine monophosphate set up correctly, this means data can ’ triiodothyronine be encrypted properly and consequently the web site is insecure to visit ( particularly those with logins or that process requital information ). alternatively of loading the site, it will deliver an error message, such as “ your connection is not private. ”
Your Connection Is Not Private Error Variations
There are quite a few different variations of this error depending upon which web browser you ’ re using, operating system, and even the shape of the certificate on the servers. And while some of these errors sometimes mean slightly different things, a draw of times the trouble-shoot steps are the lapp .
Your Connection Is Not Private in Google Chrome
In Google Chrome if there is an issue validating the certificate the error will show as “ your connection is not private ” ( as seen below ) .
Attackers might be trying to steal your information from domain.com ( for example, passwords, messages, or credit cards ) .
This is besides accompanied by an error code message which helps to try and pinpoint the accurate issue. Below are merely a match of the most coarse error codes you might see in Google Chrome :
- NET::ERR_CERT_COMMON_NAME_INVALID (this occurs when the certificate does not match the domain)
Your Connection Is Not Secure in Mozilla Firefox
In Mozilla Firefox the mistake message varies slightly, and alternatively of “ your connection is not private ” you ’ ll see “ your connection is not impregnable ” ( as seen below ) .
The owner of domain.com has configured their web site improperly. To protect your information from being stolen, Firefox has not connected to this web site .
just like in Chrome, it ’ mho accompanied by an mistake code message which helps to try and pinpoint the trouble. Below are just a pair of the most common error codes you might see in Mozilla Firefox :
Your Connection Isn’t Private in Microsoft Edge
In Microsoft Edge, you will besides see the error as “ Your connection international relations and security network ’ metric ton private. ”
Attackers might be trying to steal your information from domain.com ( for case, passwords, messages, or credit cards ) .
These are besides accompanied by an erroneousness code message. Below are good a match of the most common error codes :
- NET::ERR_CERT_COMMON_NAME_INVALID (this occurs when the certificate does not match the domain)
- Error Code: 0
This Connection Is Not Private in Safari
In Safari, you will see the erroneousness as “ Your association is not private. ”
This web site may be impersonating “ domain.com ” to steal your personal or fiscal information. You should go back to the previous page .
How To Fix the Your Connection Is Not Private Error
sometimes you might not even know where to begin if you ’ re seeing a “ your connections is not individual ” mistake. From our experience, these errors typically originate from two things : the first is a client-side issue ( your browser, computer, OS ), and the second is that there is an actual problem with the certificate on the website ( expired, wrong domain, not trusted by the administration ). So we ’ ll dive into a little of both .
here are some recommendations and things to check to fix the error ( sorted in arrange by most common reasons we see ) :
1. Try Reloading the Page
This might seem a little obvious to some, but one of the easiest and inaugural things you should try when encountering a “ your joining is not private ” mistake is to plainly close and re-open your browser and try loading the page again. It could be that the web site owner is presently reissuing their SSL certificate or something was out of whack in your browser .
2. Manually Proceed (Unsafe)
Your second gear option is to merely manually proceed. however, we don’t ever recommend doing this unless you fully understand that nothing will be encrypted if you proceed. If you ’ re going to be entering in login credentials or entering payment details, by all means, cut to the future steps below .
We only include this choice so we can explain the full ramifications of doing this. Seeing this erroneousness could very well mean that person ’ s trying to fool you or steal any information you send to the waiter and you should typically close the site immediately. It is besides possible that the web site has been compromised and there is a malicious redirection. If you ’ re in a public stead, never try to bypass this screen .
Sign Up For the Newsletter
Want to know how we increased our traffic over 1000%?
Join 20,000+ others who get our weekly newsletter with insider WordPress tips !
If you placid want to proceed, there is normally a “ Proceed to domain.com ” link you can click at the bottom of the error blind. Depending on the browser this is sometimes hidden under the “ Advanced ” option. eminence : If the web site is using HSTS ( HTTP Strict Transport Security ) this option won ’ metric ton be available as it means they have implemented an HTTP header which never allows non-HTTPS connections .
3. Are You in a Cafe or Airport?
This might sound odd, but cafes ☕ and airport Wi-Fi networks tend to be one of the most popular places that users see the “ your connection is not secret ” error. Why ? Because a distribute of them are however not running everything over HTTPS, or if they are, it isn ’ triiodothyronine configured correctly. This normally pertains to the portal site screen where you need to accept the terms and agreement to sign in. If you ’ re trying to connect to an HTTPS ( secure ) web site before accepting the portal site ’ south terms this mistake could pop up. here are some easy steps to get around it .
- Connect to the cafe or the airport’s Wi-Fi.
- Browse to a non-HTTPS site, such as
- The sign-in page should then open. You can accept the terms and then log in. Due to the fact that the terms are usually just consisting of a checkbox, you shouldn’t be too concerned if it isn’t running over HTTPS. Once connected you can then browse to sites over HTTPS. Tip: If you can’t get the sign-in page to open, you could also try typing
184.108.40.206into your browser (source).
Remember, whenever you ’ re using populace Wi-Fi a VPN can help protect you even further by hiding your traffic. here are a couple popular ones you might want to check out :
4. Check Your Computer’s Clock
Another very coarse rationality that you might see the “ your connection is not private ” error is that your computer ’ sulfur clock is messed up. Browsers rely on these to be correctly synced up to verify the SSL certificate. This can easily happen if you precisely purchased a new calculator, particularly laptops on Wi-Fi for the first time. They don ’ deoxythymidine monophosphate constantly sync up mechanically after your foremost login. Below are the steps to update the fourth dimension on your calculator. note : This can besides happen on mobile devices .
- Right-click the time in the bottom right-hand task tray.
- Select “Adjust date/time.”
- Select “Set time automatically” and optionally “Set time zone automatically.” This will update according to one of Microsoft’s NTP servers. Double check the time in the bottom right-hand task tray to make sure it’s correct. If not, you can click on the “Change” button to manually select a time zone.
- Close your browser and re-open it. Then try revisiting the website.
- From the Apple menu click on “System Preferences”
- Click the Date & Time icon. If the padlock appears at the bottom of the window you might need to click it and enter your administrator username and password.
- Select “Set date & time automatically.” This will update according to one of Apple’s NTP servers.
- Select the Time Zone tab. If it doesn’t determine your location automatically simply uncheck it so you can manually set it. On the map select your time zone region and city.
- Close your browser and re-open it. Then revisiting the website.
5. Try in Incognito Mode
Our following recommendation would normally be to clear your browser ’ sulfur hoard. however, that ’ s easier said than done for a lot of us. 😉 If you want to check if it might be your browser cache, without clearing your cache, you can always open up your browser in incognito mood. Or test another browser and see if you still see the “ your connection is not private ” error. Don ’ t rule out Chrome extensions either. But this will help you test that .
In Mozilla Firefox Incognito mood is referred to as “ New secret window. ” In Microsoft Edge, it ’ second referred to as “ New InPrivate Window. ”
6. Clear Browser Cache and Cookies
If you think it might be your browser, clearing your browser hoard is always a good troubleshooting step before diving into more in-depth trouble-shoot. Below are instructions on how to do it in the assorted browsers :
Check Out Out Video Guide to Clearing Browser Cache
7. Try Clearing the SSL State on Your Computer
Clearing the SSL submit in Chrome is much overlooked but can come in very handy and is easy to try. Just like clearing your browser ’ s cache this can help if things get out of synchronize. To clear the SSL country in Chrome on Windows, follow these steps :
- Click the Google Chrome – Settings icon (Settings) icon, and then click Settings.
- Click Show advanced settings.
- Under Network, click Change proxy settings. The Internet Properties dialog box appears.
- Click the Content tab.
- Click “Clear SSL state”, and then click OK.
- Restart Chrome.
If you are on a Mac, see these instructions on how to delete an SSL certificate .
8. Change DNS Servers
The next thing you can try is changing your DNS servers. We ’ ve actually seen the “ your connection is not private ” error happen before when using Google ’ s Public DNS ( 220.127.116.11 and 18.104.22.168 ) or Cloudflare ’ s DNS ( 22.214.171.124 and 126.96.36.199 ). Removing this and defaulting back to your ISP ’ s DNS servers can sometimes fix DNS errors. Google and Cloudflare aren ’ thyroxine perfect 100 % of the time and we ’ ve issues occur immediately and then .
To do this on Windows, go to your network connection properties and make sure “ Obtain DNS waiter address automatically ” is selected. If you ’ ve added Google ’ s Public DNS or Cloudflare ’ s DNS to your router, you might besides have to remove it from there .
9. Disable VPN and Antivirus Temporarily
sometimes VPNs and Antivirus software can conflict or override your network settings, including blocking certain SSL certificates or connections. If you have any hunt, try temporarily disabling them ( closing them ) or turning off their “ SSL Scan ” feature to see if it resolves the “ your joining is not secret ” mistake in Chrome .
10. Make Sure the Certificate Hasn’t Expired
SSL certificates expiring without the web site owner ’ s cognition happens all the time. In fact, a draw more than you might think. tied to Fortune 500 companies ! We were able to find this pinch below within a matter of a few seconds. No big deal, good Huntington Bank forgetting to renew their SSL security. 😨
@ Huntington_Bank It seems like the SSL security on your locate for logging into my report has expired. Google Chrome is giving me a warning every time and does not let me sign in. Please avail .
— Jonathon Kay ( @ jonathonkay29 ) August 13, 2018
typically this happens ascribable to the following reasons :
- The website owner doesn’t have auto-renew enabled with the domain registrar or SSL certificate provider.
- Auto-renew is enabled but payment fails because the user has forgotten to update their payment method. Users typically change credits cards more frequently than they access their domain registrar’s dashboard throughout the year.
- The website owner uses a free Let’s Encrypt certificate which expires every 90 days and they don’t have a script in place to renew it, or they forget. At Kinsta, we’ve automated this process so you never have to worry about your free SSL certificates expiring.
This results in an accompanying error code : net : :ERR_CERT_DATE_INVALID .
You can easily check a certificate ’ south exhalation date by opening up Chrome DevTools while you ’ re on the locate. Click on the security pill and click on “ View certificate. ” The “ Valid from ” dates will show in the certificate information .
Another promptly and easy direction to access a site ’ s SSL security information in Chrome is to click on the padlock in the address bar. then click on “ Certificate. ”
11. Check Subject Alternative Domain
Each certificate has what they call the Subject Alternative Name. This includes all the sphere name variations for which the certificate is issued to and valid for. It ’ south important to note that
https://www.domain.com are treated as two break domains ( just like a subdomain ) .
If you ’ re seeing an accompanying error code such as SSL_ERROR_BAD_CERT_DOMAIN, it could be that a certificate is not registered properly on both variations of the domain. This is less common nowadays as sites normally have HTTPS redirects in target. At Kinsta you can generate your free HTTPS security for both world wide web and non-www .
This could besides happen if you equitable changed sphere names. For model, possibly you good acquired that glazed newly .com address and moved from your old world. If you forget to install an SSL certificate on your newfangled domain, then a final : :ERR_CERT_COMMON_NAME_INVALID error will most probable occur .
12. Is the Certificate SHA-1?
SHA-1 is a cryptanalytic hashish algorithm once normally used by SSL certificates on the web. SHA-1 though has shown signs of weaknesses and consequently is no long supported in any current browser. If a web site is still using a certificate with this old algorithm the “ your connection is not individual ” error will appear .
Most certificates now use SHA-256 hash algorithm. This can be found under the “ Details ” tab when inspecting a security on a web site .
13. Is the Certificate Issued by Symantec?
rear in January 2017, the public was made mindful of some bad practices on Symantec ’ s part when it comes to how they issued certificates. basically they didn ’ thymine comply with the industry criterion CA/browser forum baseline requirements. It besides turned out that they had been aware of this for some time. Because of this, browsers decided to no longer support certificates issued by Symantec. If a web site is still using a certificate issued by them the “ your connection is not secret ” mistake might appear .
The timeline for this is placid rolling out :
Using a Symantec certificate can result in the accompanying mistake code : internet : :ERR_CERT_SYMANTEC_LEGACY .
14. Run an SSL Server Test
If you ’ re not sure if everything is set up correctly on your web site or person else ’ mho, you can constantly run an SSL server test. SSL/TLS certificates require not alone your main certificate but besides what they call average certificates ( chain ) to besides be installed. If you don ’ t have these set up properly, visitors could get a warn in their browsers, which in change state might drive them away. And depending on the browser and version, you may or may not see this warn if your certificate is setup incorrectly .
We recommend using the free SSL check tool from Qualys SSL Labs. It ’ south very reliable and we use it for all Kinsta clients when verifying certificates. Simply head over to their SSL crack creature, input your world into the Hostname field and click on “ Submit. ” You can besides select the option to hide public results if you prefer. The scan might take a minute or two but it will show you all the fine details regarding a web site ’ south SSL/TLS shape .
Check out our in-depth tutorial on a couple things to check for when running an SSL test.
We’ve taken our knowledge of effective website management at scale, and turned it into an ebook and video course. Click here to download The 2022 Guide to Managing 60+ WordPress Sites!
Older operating systems fall out of date with newer technologies such as TLS 1.3 and the latest cipher suites as browsers stop supporting them. specific components in the latest SSL certs will merely stop working. Google Chrome, in fact, pulled the plug on Windows XP back in 2015. We constantly recommend upgrading to newer operating systems if possible, such as Windows 10 or the latest version of Mac OS X .
Make certain your device is up-to-date on Windows, Mac, or another operational organization .
16. Restart Your Computer
We know it ’ s annoy, but it has to be mentioned. 😬 If none of the above options work, trying restarting your calculator and even your router. We realize many of you credibly have hundreds of pill or applications open and that ’ s why we made this one of the last options. But rebooting devices actually clears out a distribute of temp hoard and hiccups .
17. Reach out For Help
however seeing the “ your joining is not individual ” error ? Don ’ t be afraid to reach out and ask for help. If you see this on your own WordPress web site, feel release to open up a ticket with our Kinsta corroborate team. We can help you determine why this might be happening and if it is indeed an issue on your web site itself .
The Google Chrome Help Forums can besides be specially helpful ! You can guarantee there are users that have already experienced the same mistake or bug, and are ready to help .
18. Disable Chrome Checking SSL Certificates
You can besides disable Chrome checking SSL certificates. however, we can ’ t tension adequate, this is only meant for testing and development purposes. Don ’ metric ton ever use the pursue options unless you know precisely what you ’ ra doing .
Allow Invalid Certificates From localhost
If you ’ rhenium testing locally, you might be able to use the Chrome sag to simply allow insecure connections from localhost. In Chrome, browse to :
chrome://flags/. search for “ insecure ” and you should see the option to “ Allow invalid certificates for resources loaded from localhost. ” Enable that option and restart your browser .
Disable Chrome Checking All SSL Certificates
You can tell Chrome to ignore all SSL security errors by passing the follow at the command line at establish. If you ’ re on Windows merely right-click into the properties of the catapult. then add
--ignore-certificate-errors in the target field. then restart Chrome .
Browser errors are never fun and can sometimes be unmanageable to troubleshoot. Hopefully one of the tips above will help you resolve the “ your connection is not private ” error a quickly as possible. Remember, these are typically caused by something misconfigured on your own computer or with the certificate on the web site itself.
Read more: A Few Thoughts on Cryptographic Engineering
Was there anything we missed ? possibly you have another tip off on troubleshooting the connection error. If then, let us know below in the comments .
Save fourth dimension, costs and maximize site operation with :
- Instant help from WordPress hosting experts, 24/7.
- Cloudflare Enterprise integration.
- Global audience reach with 33 data centers worldwide.
- Optimization with our built-in Application Performance Monitoring.
All of that and much more, in one plan with no long-run contracts, assisted migrations, and a 30-day-money-back-guarantee. Check out our plans or talk to sales to find the plan that ’ s justly for you .