DigiCert® SSL Installation Diagnostics Tool checks on SSL certificate installation and detect known vulnerabilities associated with SSL in the server. A one-step process that lists all issues with an SSL certificate and its installation.
Every server, from Apache, Tomcat to NGINX servers has its own unique installation process with varying configurations where one method of installation does not necessarily work for the other. In order to be sure that an SSL certificate has been correctly installed, you’ll need to use an SSL certificate checker.
DigiCert Inc., leading Certificate Authority (CA) for high assurance SSL certificate has an amazing tool that does just that – a web-based tool with no software installation required.
What Does DigiCert® SSL Certificate Checker Do?
1. It checks the DNS of a website address
A public IP address must be available before an SSL certificate will work. For this reason, the SSL Certificate checker first checks whether a domain points to a public IP.
2. It analyzes the SSL Certificate installed on the Server
A valid SSL certificate must be installed otherwise a secure connection cannot be setup. DigiCert SSL inspector tool checks on the common name(s) listed on the SSL certificate and the Certificate Authority (CA) who issued the certificate. The common name(s) listed on the certificate needs to be publicly as by 31 Oct 2015, internal names are not allowed and recognized by CAs and browsers.
3. It ensures that the SSL certificate is still valid and has not been revoked or expired
An SSL certificate musn’t be expired as browsers will not trust the certificate. The Online Certificate Status Protocol (OCSP) needs to receive a signal from the trusted root certificate to determine if the certificate can be trusted by browsers.
4. It matches the common name(s) listed on the certificate to see if it matches with domain name
The common name listed on the SSL certificate must match with the website name. Otherwise, a secure link cannot be established and the connection will not be private.
5. It determines if the SSL certificate has been correctly installed
And above all, it tells you directly if an SSL certificate has been correctly installed.
Optional: It examines to see if the server is vulnerable to any attacks associated with SSL
The SSL checker lastly looks to see if SSL vulnerabilities have been disabled on the server. With known vulnerabilities in old protocols such as SSL 2.0, 3.0 and cipher suites such as RC4, it is best to disable them to ensure endpoints are safe.
Where to Get DigiCert® SSL Installation Diagnostics Tool?
This tool is completely free and available on DigiCert’s website, used by thousands of IT administrators and website owners. Use the SSL certificate checker tool to complement your SSL installation for the best results in SSL security.