Dear Alibaba Cloud users,
On May 27, 2019, GlobalSign updated the intermediate certificate authorities (CAs) that are used to issue SSL certificates. As a result, the GlobalSign DV and OV certificates that are renewed by using SSL Certificates Service since May 27, 2019 may become untrusted.
Item | Description |
Affected certificate | The GlobalSign DV and OV certificates that are renewed by using SSL Certificates Service since May 27, 2019 are affected. The GlobalSign certificates that are purchased by using SSL Certificates Service since May 27, 2019 are not affected. |
Problem description | If you install a renewed certificate to replace a certificate that was purchased before May 27, 2019 on the server, some users may receive the The system has found a problem with this website's security certificate error message when the users access your service. In addition, This website's security certificate isn't from a trusted source is displayed below Certificate information. |
Cause | The affected certificates and the old certificates that were installed before May 27, 2019 are associated with different root CAs. The affected certificates are associated with the GlobalSign Root R3, and the old certificates are associated with the GlobalSign Root R1. |
Solution | You must install the GlobalSign Cross Certificate R1-R3 on your server on which your affected certificate is installed. The GlobalSign Cross Certificate R1-R3 is compatible with both Root R1 and Root 3. To install the GlobalSign Cross Certificate R1-R3, perform the following steps:
|
Thank you for your support.