Reputation: 526
Web application product shows "Not secure" warning on browsers
I am working on a web application product that is to be distributed to several clients. Now everything was fine as long as customers used localhost but when they used the server IP to access web application's password page, Chrome and other browsers started showing "Not secure" on the title. I know about self signing but I am sure that it is not the possible solution for web product where every user will have to create signing authority and setup the signature or at lease create signing authority.
Upvotes: 0
Views: 77
Answers (1)
Reputation: 297
If the server certificate is self-signed is not responsibility of the user to create anything. The server must be configured to use a CA signed certificate that the browser will be able to verify it's identity.
Browsers pre-trust many known CA root certificates. If your web application has a server certificate signed by a known CA, the user will not receive any errors in the browser, since it will be able to verify the application's own identity.
There are plenty of resources online explaining how to create a CSR and get it signed by a CA (it may involve extra costs).
Upvotes: 0
Related Questions
- why is safari the only browser flagging my https website as not secure
- Magento SSL: browsers alert to insecure content
- Azure - How to fix "Web application should only be accessible over HTTPS" warning?
- SSL site, but has warnings
- “The site uses SSL, but Google Chrome has detected insecure content on the page.”
- Warning when using https on my website
- Website’s security certificate message on IE
- Security warning in browser
- security warning window in IE pops up on https page
- Error message IE7 "page contains secure and nonsecure items"