Hi Oluwatunmise,
Since you used word Alias, I am assuming the WAF is deployed in reverse proxy mode. Is this correct?
If so, there are two important things to note:
- The SSL certificate uploaded to the WAF must include the full trust chain. (ie: intermediate)
- The name you are using to access the Alias must match the name(s) within the cert or the browser will display an error.
In other words, if you are using an IP address to test the alias you will always receive a certificate error.
------------------------------
Jaired Anderson
Imperva
https://www.imperva.com/------------------------------
Original Message:
Sent: 02-23-2024 06:54
From: Oluwatunmise Agbana
Subject: HTTPS Security Certificate to Resolve 'Not Secure' Label Issue
I have a production website and I am accessing it through the alias of Imperva WAF, i still get the not secure label on the https when I am trying to access the website. how do i remove this and make it secure? do i need a certificate? what certificate do i need? where should i apply the certificate that will remove this not secure label? Please kindly advice on this
#On-PremisesWAF(formerlySecuresphere)
------------------------------
Oluwatunmise Agbana
Cybersecurity Operator
Platview Technologies Ltd
Lagos
------------------------------