The certificate (RapidSSL, expires next July) has been there and working fine, but Chrome now says it's not secure. Chrome version 71.0.3578.80 Yes, the web.config has the redirect in it, and the URLS show up as https in IE and Edge. In Chrome, the https is crossed out and it says the certificate is invalid. But if you look at the cert details, it looks fine to me. Does Chrome not like SHA256? There a yellow ! triangle in the "Key Usage" section: Digital Signature, Key Encypherment (a0) What's going on? Is it a TLS/SSL thing? Does Chrome not like the RapidSSL or GeoTruct Global CA? How do I fix it?