The certificate (RapidSSL, expires next July) has been there and working fine, but Chrome now says it's not secure. Chrome version 71.0.3578.80 Yes, the web.config has the redirect in it, and the URLS show up as https in IE and Edge. In Chrome, the https is crossed out and it says the certificate is invalid. But if you look at the cert details, it looks fine to me. Does Chrome not like SHA256? There a yellow ! triangle in the "Key Usage" section: Digital Signature, Key Encypherment (a0) What's going on? Is it a TLS/SSL thing? Does Chrome not like the RapidSSL or GeoTruct Global CA? How do I fix it?
Google distrusted some certificates issued by Symantec. You can fix the problem by re-keying it. Make sure you watch the video and absolutely do not revoke the SSL Certificate, otherwise, you'll have to purchase a new one.
Matters have only gotten worse. I was assured that all this would be cleared up when we renewed our certificate, but since Google has embedded itself in almost every browser and many security apps, I have gotten a slew of messages from folks saying that they are being blocked from our site because the certificate has expired, which is wrong. How can this really be remedied?
