Hello, we participated last year to the closed testing phase of Let’s encrypt, it was pretty convincing
Now it’s still in public beta phase but our paid certificate (by Gandi) expire in March.
So to save the cost of a year wildcard certificate, we’d like to switch to let’s encrypt.
Please can you test if you see anything wrong here https://www.openmandriva.org
(you should see that the certificate is provided by let’s encrypt by putting the cursor over the green locker- there should be one if all is ok - at the left of url bar)
Note that all other subdomains are still encrypted with Gandi’s certificate, so only test www.
Please test in as much conditions as possible, with several browsers if you have, desktop, mobile OS, even exotic or semi-exotic (Sailfish OS, Opera mobile, lynx…) so that we can avoid big surprise that forces us to revert after a full migration. Don’t hesitate to spread in partner forums and bring feedback if you can/want to.
desktop linux omv 2014.2 chromium
Just tested. February 26, 16:09 GMT.
edge: I don’t know I just see “DST Root CA x3 a identifié le site comme \www.openmandriva.org”
Firefox beta : good
@sirius strange you still have Gandi as third party… Maybe you should close and restart Firefox?
@jojodu34 at least, with edge, there is no error message? I mean something that could frighten users…
Great It seems we’ll be able to migrate flawlessly then!
@Sirius , empty the cache, and reload the page with pressed ctrl key
I emptied the cache. Then reloaded the page, using Ctrl+Enter and Ctrl+F5 (F5=reload). I still don’t close and restart FF.
Still says Gandi.
Closed and restarted FF. Still Gandi.
After the restart, Ctrl+Enter and Ctrl+F5. Still Gandi.
Maybe a cache in my ISP?
Clearing the certificates?
Can you try this:
Tools > Clear Private Data and only put a checkmark before Authenticated Sessions -> Clear Now
from How to clear ssl cache • mozillaZine Forums
Actual FF doesn’t have “Clear Private Data” in Tools menu. At least I can’t find it.
Page you wrote is from year 2006.
I didn’t find it under Edit-Preferences either.
firefox seems capricious in its key management. I do not always manage to bring up “verified by let’s Encrypt” (because only root is encrypted I think).
But each time the cache was empty and I had to reload the page several times
What is weird is the difference of behaviour with @Sirius 's environment
I have tried with Safari on iOS (iPhone) and it works (at least no error message, since i did not find how to get certificate infbrmations)
Firefox is a hell with its cache…
To clear cache in Firefox:
3-bars menu (somebody call it “hamburger menu” )
History > You may want to clear your recent history > Everything > Clear Now
To view certificate:
right click on the page
view page info > security > view certificate
hem, it’s for history
for cache you have to go in advanced (translate from French)
I’ve repeated the steps above, here it seems I didn’t miss anything…
This advanced step, when/where did you meet?