Re: Sudden HTTPS ERR_SSL_VERSION_OR_CIPHER_MISMATC...

TEKeys · ‎07-02-2024

We have a website that was created with Weebly and is still in use today under Weebly login (https://www.keystoadvancement.com/). Unfortunately, Chrome and other browsers keep saying that it is not secure and will not load. Error reads: “This site can’t provide a secure connectionwww.keystoadvancement.com uses an unsupported protocol.
ERR_SSL_VERSION_OR_CIPHER_MISMATCH; Unsupported protocol; The client and server don't support a common SSL protocol version or cipher suite.”

I noticed this behavior about a month ago, but nothing on the site has changed. I have been troubleshooting and trying to see what parts are insecure, but I cannot find anything except parts of Weebly/Square code are listed as insecure when inspecting and testing (like actual images stored on the website host). I think a reset/reissue of the SSL certificate on our website might fix the issue, but unsure? Any Ideas?

JK_Fiber_Art · ‎07-02-2024

You're going to need some help from Tech Support from what I can tell. Sometimes, the error is a symptom of a deeper issue with the SSL certificate itself, such as it being expired or misconfigured. I ran an SSL Checker and received the following: "No SSL certificates were found on www.keystoadvancement.com. Make sure that the name resolves to the correct server and that the SSL port (default is 443) is open on your server's firewall." I'm not sure that Weebly uses cPanel - many hosting services have this - it's a user friendly interface that allows you to control and configure your site yourself so that's why I mentioned contacting Tech Support.

frances_a · ‎07-03-2024

Hello @TEKeys 👋

Although the issue seems to be SSL-related at first, when SSL is disabled you'll typically see an option to load the site anyway.

We were able to run your domain through who.is to see your DNS records and found that there is an A record that is not pointing to Square/Weebly. You can see your settings here.

You'll need to remove this A record. Once done, you'll want to unpublish your site and then publish it again for the SSL to refresh.

Let me know if you run into any issues!

Thank you.

Frances
Community Moderator, Square
Sign in and click Mark as Best Answer if my reply answers your question.

TEKeys · ‎07-03-2024

Thank you for the information. I don't know how I missed that. I am talking with Namecheap right now. That A record isn't in our dashboard to delete, meaning they're inserting it on their end.

TEKeys · ‎07-03-2024

They removed it on their end. Followed your instructions to unpublish and republish. Waiting on SSL to be created (been a few minutes, but I'll check back later)

frances_a · ‎07-03-2024

I do see the A record has been removed when entering the domain in who.is.

I was able to load the site, although it still says it is not secure. That is normal, as SSL configuration can take a bit of time.

If is not configured overnight, I would recommend reaching out to support to check on it. We have limited access to accounts here in the Community, but support can help.

Thank you.

Frances
Community Moderator, Square
Sign in and click Mark as Best Answer if my reply answers your question.

Sudden HTTPS ERR_SSL_VERSION_OR_CIPHER_MISMATCH on Weebly Site