I use Let's encrypt certificates on the server. The certificates are automatically renewed and the server-config is updated. Problem: When I open the web-page in Chrome, it shows that the certificate is valid, but the Certificate dialogue still shows the old certificate info (see Valid from dates): <img src="https://i.stack.imgur.com/XamiG.png" alt="enter image description here"> When I open the page in incognito mode, the browser shows the correct/new certificate <img src="https://i.stack.imgur.com/bBFyQ.png" alt="enter image description here"> Another odd thing: <ul> <li>after refreshing the page with CTRL+F5, Chrome shows the correct info</li> <li>but when I now close the tab and open a new tab, the old info will be shown again!?</li> </ul> Questions: <ol> <li>Is this maybe a bug in Chrome? i.e. maybe it caches the certificate info for too long</li> <li>Or is there something my web-page/server can do to update this info?</li> </ol>

tl;dr It turned out that the issue is related to the web-page being a PWA and that we had initially used a www-only cert. Details: <ul> <li>when setting up the server we first created a www-only-certificate for e.g. <code>www.myapp.com</code> </li> <li>but we forgot to include the naked-domain in the cert, so some hours later we created a new cert for <code>myapp.com</code> and <code>www.myapp.com</code> </li> <li>the browsers that had already loaded the app had the issue described in the question</li> </ul> Result: actually we just ignored the issue, because only few clients were affected and even for those, chrome does not show an error and the connection is still encrypted for more details see this Let's Encrypt forum post

Chrome shows old SSL certificate

I use Let's encrypt certificates on the server. The certificates are automatically renewed and the server-config is updated.

Problem: When I open the web-page in Chrome, it shows that the certificate is valid, but the Certificate dialogue still shows the old certificate info (see Valid from dates): enter image description here

When I open the page in incognito mode, the browser shows the correct/new certificate enter image description here

Another odd thing:

after refreshing the page with CTRL+F5, Chrome shows the correct info
but when I now close the tab and open a new tab, the old info will be shown again!?

Questions:

Is this maybe a bug in Chrome? i.e. maybe it caches the certificate info for too long
Or is there something my web-page/server can do to update this info?

Why does my old cert show for OWA even though I replaced it?

Answer: This typically happens when a certificate is installed via the Exchange Management Shell. (EMS) When installing a cert via the EMS, you don't have the ability to specify the website the certificate is being used on, so you must tell IIS to use the right certificate via the IIS Manager.

tl;dr

It turned out that the issue is related to the web-page being a PWA and that we had initially used a www-only cert.

Details:

when setting up the server we first created a www-only-certificate for e.g. www.myapp.com
but we forgot to include the naked-domain in the cert, so some hours later we created a new cert for myapp.com and www.myapp.com
the browsers that had already loaded the app had the issue described in the question

Result:
actually we just ignored the issue, because only few clients were affected and even for those, chrome does not show an error and the connection is still encrypted

for more details see this Let's Encrypt forum post

Chrome shows old SSL certificate

Tags:

google-chrome

ssl

lets-encrypt

TmTron

People also ask

1 Answers

TmTron

Recent Activity

Donate For Us

Chrome shows old SSL certificate

Tags:

google-chrome

ssl

lets-encrypt

TmTron

People also ask

1 Answers

TmTron

Related questions

Recent Activity

Donate For Us