Kinsta works with thousands of unlike WordPress sites on a daily basis, so when it comes to different types of errors, we've pretty much seen it all. From database connectedness errors to the white screen of death, ERR_CACHE_MISS, and browser/TLS related issues.

Some of these for the everyday WordPress user can be downright frustrating and fifty-fifty scary at times. Depending on the type of error it could also hateful downtime for your website, which means you're losing money. Or it might but be that the browser on your computer needs fixing.

Today nosotros're going to swoop into the "your connection is not individual" error and walk you through some ways to get things working again. Read more below about what causes this mistake and what you tin can do to prevent it in the future.

What Is the Your Connection is Not Private Mistake?

The "your connection is not private" error only pertains to sites that are running over HTTPS(or should be running over HTTPS). When you visit a website, your browser sends a asking to the server where the site is hosted. The browser then has to validate the certificate installed on the site to ensure it is upwards to current privacy standards. Other things that also have place include the TLS handshake, the certificate being checked against the certificate authority, and decryption of the certificate.

If the browser finds that the certificate isn't valid, information technology will automatically effort to forestall you from reaching the site. This characteristic is built into web browsers to protect the user. If the certificate isn't set up correctly, this means information can't be encrypted properly and therefore the site is unsafe to visit (peculiarly those with logins or that process payment information). Instead of loading the site, it volition deliver an error bulletin, such every bit "your connection is not individual."

Your Connection Is Non Individual Fault Variations

There are quite a few dissimilar variations of this error depending upon which spider web browser you're using, operating system, and even the configuration of the document on the servers. And while some of these errors sometimes mean slightly different things, a lot of times the troubleshooting steps are the same.

Your Connectedness Is Not Private in Google Chrome

In Google Chrome if there is an effect validating the certificate the error will prove equally "your connection is not individual" (equally seen below).

Attackers might be trying to steal your data from domain.com (for example, passwords, messages, or credit cards).

Your connection is not private error in Chrome
Your connection is non individual mistake in Chrome

This is also accompanied past an error code message which helps to try and pinpoint the exact issue. Below are simply a couple of the almost mutual error codes you might see in Google Chrome:

  • ERR_CERT_SYMANTEC_LEGACY
  • NET::ERR_CERT_AUTHORITY_INVALID
  • Internet::ERR_CERT_COMMON_NAME_INVALID (this occurs when the certificate does not match the domain)
  • NET::ERR_CERT_WEAK_SIGNATURE_ALGORITHM
  • Internet::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED
  • NET::ERR_CERT_DATE_INVALID
  • ERR_SSL_PROTOCOL_ERROR
  • ERR_SSL_VERSION_OR_CIPHER_MISMATCH

Your Connexion Is Not Secure in Mozilla Firefox

In Mozilla Firefox the error message varies slightly, and instead of "your connection is not individual" yous'll see "your connectedness is non secure" (as seen below).

The owner of domain.com has configured their website improperly. To protect your information from being stolen, Firefox has not continued to this website.

This connection is not secure warning in Firefox
This connexion is non secure alarm in Firefox

Merely like in Chrome, it's accompanied by an error lawmaking message which helps to try and pinpoint the problem. Below are just a couple of the most common error codes you might see in Mozilla Firefox:

  • MOZILLA_PKIX_ERROR_ADDITIONAL_POLICY_CONSTRAINT_FAILED
  • SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE
  • SEC_ERROR_EXPIRED_CERTIFICATE
  • SEC_ERROR_UNKNOWN_ISSUER
  • MOZILLA_PKIX_ERROR_MITM_DETECTED
  • ERROR_SELF_SIGNED_CERT
  • SSL_ERROR_BAD_CERT_DOMAIN

Your Connectedness Isn't Private in Microsoft Border

In Microsoft Edge, you volition likewise come across the error as "Your connexion isn't private."

Attackers might exist trying to steal your data from domain.com (for case, passwords, letters, or credit cards).

Your Connection isn't Private in Microsoft Edge
Your Connection isn't Private Mistake in Microsoft Edge

These are also accompanied by an error lawmaking message. Below are just a couple of the most common error codes:

  • NET::ERR_CERT_COMMON_NAME_INVALID (this occurs when the certificate does non match the domain)
  • Error Lawmaking: 0
  • DLG_FLAGS_INVALID_CA
  • DLG_FLAGS_SEC_CERT_CN_INVALID

This Connection Is Not Individual in Safari

In Safari, yous will see the error as "Your connection is non individual."

This website may exist impersonating "domain.com" to steal your personal or financial information. Yous should become back to the previous page.

Your connection is not private error in Safari
Your connection is non private mistake in Safari

How To Fix the Your Connexion Is Not Individual Fault

Sometimes you might not even know where to begin if you lot're seeing a "your connections is not private" error. From our feel, these errors typically originate from two things: the first is a customer-side issue (your browser, computer, Os), and the second is that there is an bodilyproblem with the document on the website(expired, wrong domain, not trusted past the system). So we'll dive into a niggling of both.

Here are some recommendations and things to bank check to prepare the mistake (sorted in order by most common reasons nosotros come across):

ane. Try Reloading the Page

This might seem a fiddling obvious to some, just one of the easiest and starting time things y'all should effort when encountering a "your connection is not private" error is to simply close and re-open your browser and try loading the folio again. It could exist that the website owner is currently reissuing their SSL certificate or something was out of whack in your browser.

2. Manually Proceed (Unsafe)

Your second choice is to only manually proceed. Yet, we don't ever recommend doing this unless you lot fully understand that zero will exist encrypted if you go along. If yous're going to be entering in login credentials or entering payment details, by all means, skip to the next steps below.

We merely include this option and so we can explicate the full ramifications of doing this. Seeing this mistake could very well hateful that someone's trying to fool you or steal any info you send to the server and you should typically close the site immediately. Information technology is also possible that the website has been compromised and in that location is a malicious redirection. If you're in a public place, never try to bypass this screen.

Subscribe Now

If you nonetheless want to proceed, there is usually a "Keep to domain.com" link you tin can click at the bottom of the error screen. Depending on the browser this is sometimes subconscious under the "Advanced" option. Note: If the website is using HSTS (HTTP Strict Transport Security) this option won't exist bachelor equally it means they have implemented an HTTP header which never allows non-HTTPS connections.

Connection error proceed anyways
Connection error proceed anyways

3. Are You in a Buffet or Airport?

This might sound odd, but cafes ☕ and airport Wi-Fi networks tend to exist 1 of the about popular places that users see the "your connection is not private" error. Why? Considering a lot of them are nevertheless not running everything over HTTPS, or if they are, it isn't configured correctly. This commonly pertains to the portal screen where you need to accept the terms and agreement to sign in. If you're trying to connect to an HTTPS (secure) site earlier accepting the portal'southward terms this error could pop up. Here are some easy steps to get around it.

  1. Connect to the cafe or the airport'southward Wi-Fi.
  2. Browse to a non-HTTPS site, such as http://www.weather.com.
  3. The sign-in page should then open up. You lot can accept the terms and so log in. Due to the fact that the terms are usually only consisting of a checkbox, yous shouldn't exist besides concerned if it isn't running over HTTPS. Once connected y'all can then browse to sites over HTTPS. Tip: If you can't get the sign-in folio to open, you could also attempt typing 1.ane.1.1 into your browser (source).

Call up, whenever y'all're using public Wi-Fi a VPN tin can help protect you even farther by hiding your traffic. Hither are a couple popular ones you lot might want to check out:

  • Private Internet Access
  • TunnelBear
  • NordVPN

4. Cheque Your Computer'due south Clock

Some other very common reason that you lot might encounter the "your connexion is non private" error is that your computer's clock is messed up. Browsers rely on these to be correctly synced up to verify the SSL certificate. This can hands happen if you just purchased a new computer, especially laptops on Wi-Fi for the first fourth dimension. They don't always sync up automatically subsequently your commencement login. Beneath are the steps to update the fourth dimension on your reckoner. Note: This can also happen on mobile devices.

Windows

  1. Right-click the time in the bottom correct-hand task tray.
  2. Select "Adjust engagement/time."
    Adjust date and time on PC
    Adapt date and fourth dimension in Windows
  3. Select "Ready time automatically" and optionally "Set time zone automatically." This will update according to one of Microsoft'south NTP servers. Double check the time in the lesser correct-hand task tray to make sure it's correct. If not, you can click on the "Change" button to manually select a time zone.
    Windows time zone
    Windows time zone
  4. Close your browser and re-open up information technology. Then endeavour revisiting the website.

Mac

  1. From the Apple menu click on "Organization Preferences"
  2. Click the Date & Time icon. If the padlock appears at the bottom of the window you might need to click it and enter your administrator username and password.
  3. Select "Prepare appointment & time automatically." This will update co-ordinate to one of Apple's NTP servers.
  4. Select the Time Zone tab. If information technology doesn't determine your location automatically simply uncheck it so you tin manually set it. On the map select your time zone region and city.
  5. Close your browser and re-open it. Then revisiting the website.

five. Try in Incognito Fashion

Our next recommendation would usually be to clear your browser's enshroud. Yet, that's easier said than done for a lot of united states of america. 😉 If you lot want to check if it might be your browser cache, without immigration your cache, y'all can always open your browser in incognito mode. Or examination another browser and see if you still see the "your connexion is non individual" error. Don't rule out Chrome extensions either. Only this will help yous exam that.

Open Chrome in Incognito mode
Open up Chrome in Incognito mode

In Mozilla Firefox Incognito mode is referred to as "New individual window." In Microsoft Edge, information technology's referred to every bit "New InPrivate Window."

6. Articulate Browser Enshroud and Cookies

If you remember it might be your browser, clearing your browser cache is always a good troubleshooting stride before diving into more than in-depth troubleshooting. Below are instructions on how to do it in the various browsers:

  • How to Force Refresh a Single Page for All Browsers
  • How to Articulate Browser Cache for Google Chrome
  • How to Clear Browser Enshroud for Mozilla Firefox
  • How to Clear Browser Cache for Safari
  • How to Clear Browser Enshroud for Net Explorer
  • How to Articulate Browser Cache for Microsoft Edge
  • How to Clear Browser Cache for Opera

Check Out Out Video Guide to Immigration Browser Cache

vii. Effort Clearing the SSL State on Your Computer

Clearing the SSL country in Chrome is ofttimes overlooked but tin can come in very handy and is piece of cake to endeavor. Just like clearing your browser's cache this can aid if things go out of sync. To clear the SSL state in Chrome on Windows, follow these steps:

  1. Click the Google Chrome – Settings icon (Settings) icon, and so click Settings.
  2. Click Show avant-garde settings.
  3. Under Network, click Alter proxy settings. The Cyberspace Properties dialog box appears.
  4. Click the Content tab.
  5. Click "Clear SSL land", and then click OK.
  6. Restart Chrome.
Clear SSL state
Clear SSL land

If you are on a Mac, see these instructions on how to delete an SSL document.

8. Change DNS Servers

The adjacent thing you tin can try is irresolute your DNS servers. Nosotros've really seen the "your connexion is non private" error happen before when using Google's Public DNS (8.viii.eight.8 and 8.8.4.4) or Cloudflare's DNS (one.one.1.1 and 1.0.0.1). Removing this and defaulting back to your ISP's DNS servers can sometimes fix DNS errors. Google and Cloudflare aren't perfect 100% of the time and nosotros've issues occur now and so.

To practise this on Windows, go to your network connection properties and brand sure "Obtain DNS server address automatically" is selected. If you've added Google's Public DNS or Cloudflare'south DNS to your router, you might too have to remove it from there.

Obtain DNS server address automatically
Obtain DNS server address automatically

ix. Disable VPN and Antivirus Temporarily

Sometimes VPNs and Antivirus software can conflict or override your network settings, including blocking sure SSL certificates or connections. If y'all take whatsoever running, try temporarily disabling them (endmost them) or turning off their "SSL Scan" characteristic to see if it resolves the "your connectedness is not individual" mistake in Chrome.

10. Make Sure the Certificate Hasn't Expired

SSL certificates expiring without the website owner'due south noesis happens all the time. In fact, a lot more than than y'all might think. Even to Fortune 500 companies! We were able to find this tweet beneath within a matter of a few seconds. No big deal, merely Huntington Depository financial institution forgetting to renew their SSL certificate. 😨

Typically this happens due to the following reasons:

  • The website owner doesn't have auto-renew enabled with the domain registrar or SSL document provider.
  • Automobile-renew is enabled but payment fails because the user has forgotten to update their payment method. Users typically change credits cards more frequently than they access their domain registrar's dashboard throughout the twelvemonth.
  • The website owner uses a complimentary Let'southward Encrypt document which expires every xc days and they don't have a script in place to renew information technology, or they forget. At Kinsta, we've automated this process and so you never accept to worry about your gratuitous SSL certificates expiring.

This results in an accompanying error code: NET::ERR_CERT_DATE_INVALID.

NET::ERR_CERT_DATE_INVALID
Net::ERR_CERT_DATE_INVALID

You tin can easily check a certificate's expiration engagement by opening upwardly Chrome DevTools while yous're on the site. Click on the security tab and click on "View certificate." The "Valid from" dates will show in the certificate information.

Check SSL expiration
Check SSL expiration

Another quick and piece of cake way to admission a site's SSL certificate information in Chrome is to click on the padlock in the address bar. And then click on "Certificate."

Certificate info
Certificate info

eleven. Check Subject Alternative Domain

Each document has what they call the Subject Culling Name. This includes all the domain proper noun variations for which the certificate is issued to and valid for. Information technology's important to notation that https://domain.com and https://www.domain.com are treated as 2 separate domains (just like a subdomain).

Subject alternative name
Subject field alternative name

If you're seeing an accompanying error code such as SSL_ERROR_BAD_CERT_DOMAIN, it could exist that a certificate is not registered properly on both variations of the domain. This is less common nowadays as sites usually take HTTPS redirects in place. At Kinsta y'all can generate your complimentary HTTPS document for both www and non-www.

Generate an SSL certificate for your multisite in MyKinsta.
Generate an SSL certificate for your multisite in MyKinsta.

This could likewise happen if you just changed domain names. For case, perhaps you just acquired that shiny new .com accost and moved from your former domain. If you forget to install an SSL certificate on your new domain, and then a Net::ERR_CERT_COMMON_NAME_INVALID error will most likely occur.

12. Is the Certificate SHA-ane?

SHA-ane is a cryptographic hash algorithm one time ordinarily used by SSL certificates on the web. SHA-1 though has shown signs of weaknesses and therefore is no longer supported in whatsoever current browser. If a website is still using a certificate with this former algorithm the "your connection is not private" error volition appear.

  • Google Chrome removed support for SHA-1 in Chrome 56 (January 2017)
  • Mozilla Firefox announced deprecation of SHA-one in Firefox 51 (February 2017)
  • Microsoft appear blocking SHA-i signed TLS certificates (January 2017)

Nigh certificates at present employ SHA-256 hash algorithms. This can be found under the "Details" tab when inspecting a certificate on a website.

Certificate hash algorithm
Document hash algorithm

13. Is the Document Issued past Symantec?

Dorsum in January 2017, the public was made aware of some bad practices on Symantec'due south part when it comes to how they issued certificates. Essentially they didn't comply with the industry standard CA/browser forum baseline requirements. Information technology likewise turned out that they had been aware of this for some time. Because of this, browsers decided to no longer support certificates issued by Symantec.  If a website is nevertheless using a document issued by them the "your connection is not private" error might appear.

The timeline for this is still rolling out:

  • Google Chrome Symantec timeline
  • Mozilla Firefox Symantec timeline
  • Microsoft will virtually likely be following suit, although they oasis't made an official argument even so.

Using a Symantec certificate can result in the accompanying error code: NET::ERR_CERT_SYMANTEC_LEGACY.

ERR_CERT_SYMANTEC_LEGACY
NET::ERR_CERT_SYMANTEC_LEGACY

xiv. Run an SSL Server Test

If yous're not sure if everything is fix up correctly on your website or someone else's, you can e'er run an SSL server examination. SSL/TLS certificates require not only your primary certificate but also what they telephone call intermediate certificates (chain) to also be installed. If you don't have these set upwardly properly, visitors could go a warning in their browsers, which in turn might drive them abroad. And depending on the browser and version, y'all may or may not see this warning if your document is setup incorrectly.

We recommend using the free SSL bank check tool from Qualys SSL Labs. It's very reliable and we use it for all Kinsta clients when verifying certificates. Simply caput over to their SSL check tool, input your domain into the Hostname field and click on "Submit." You tin can also select the choice to hide public results if you prefer. The browse might take a minute or two but it volition show you all the fine details regarding a site's SSL/TLS configuration.

ssl check a grade
Qualys SSL Labs

Check out our in-depth tutorial on a couple things to check for when running an SSL test.

We've taken our noesis of effective website management at calibration, and turned information technology into an ebook and video grade. Click here to download The 2022 Guide to Managing threescore+ WordPress Sites!

15. Update Your Operating Arrangement

Older operating systems fall out of date with newer technologies such equally TLS i.3 and the latest cipher suites as browsers stop supporting them. Specific components in the latest SSL certs will simply end working. Google Chrome, in fact, pulled the plug on Windows XP back in 2015. We always recommend upgrading to newer operating systems if possible, such every bit Windows ten or the latest version of Mac OS X.

Make sure your device is upward-to-date on Windows, Mac, or another operating system.

16. Restart Your Computer

We know information technology'south abrasive, only it has to exist mentioned. ðŸ˜¬ If none of the in a higher place options work, trying restarting your reckoner and fifty-fifty your router. We realize many of you probably have hundreds of tabs or applications open and that'south why we made this one of the last options. But rebooting devices really clears out a lot of temporary cache and hiccups.

17. Reach out For Help

Still seeing the "your connection is not individual" error? Don't be afraid to accomplish out and enquire for assistance. If y'all see this on your own WordPress site, experience complimentary to open up up a ticket with our Kinsta support squad. We can help yous determine why this might exist happening and if it is indeed an issue on your website itself.

The Google Chrome Help Forums can also be especially helpful! You can guarantee in that location are users that have already experienced the same error or issues, and are fix to help.

18. Disable Chrome Checking SSL Certificates

You can also disable Chrome checking SSL certificates. Yet, we tin can't stress enough, this is only meant for testing and development purposes. Don't ever use the following options unless you lot know exactly what you're doing.

Allow Invalid Certificates From localhost

If you're testing locally, y'all might be able to utilize the Chrome flag to simply allow insecure connections from localhost. In Chrome, browse to:chrome://flags/. Search for "insecure" and y'all should run into the choice to "Allow invalid certificates for resources loaded from localhost." Enable that option and restart your browser.

Allow insecure connections on localhost in Chrome
Let insecure connections on localhost in Chrome

Disable Chrome Checking All SSL Certificates

You can tell Chrome to ignore all SSL document errors past passing the following at the command line at launch. If you're on Windows simply right-click into the properties of the launcher. So add --ignore-certificate-errors in the target field. And so restart Chrome.

Chrome ignore certificate errors
Chrome ignore certificate errors

Summary

Browser errors are never fun and can sometimes exist difficult to troubleshoot. Hopefully 1 of the tips to a higher place will help you resolve the "your connectedness is non private" error equally speedily as possible. Think, these are typically caused past something misconfigured on your ain computer or with the document on the website itself.

Was there annihilation we missed? Peradventure you accept another tip on troubleshooting the connexion error. If so, permit us know beneath in the comments.

Salve time, costs and maximize site functioning with:

  • Instant assist from WordPress hosting experts, 24/vii.
  • Cloudflare Enterprise integration.
  • Global audition accomplish with 29 data centers worldwide.
  • Optimization with our built-in Application Performance Monitoring.

All of that and much more, in ane plan with no long-term contracts, assisted migrations, and a 30-day-coin-back-guarantee. Bank check out our plans or talk to sales to find the plan that'south right for you.