“This Website Cannot Be Trusted”: What It Means and How to Fix It
What the “this website cannot be trusted” error really means, and how to fix it fast.
You typed a normal URL. Your browser stops you with a red screen that says “this website cannot be trusted”. No site, just a warning. This guide explains what is going on and how to fix it.
The short answer
Your browser asked the website to prove its identity. The website failed the test. The browser does what a good security guard does - it blocks the door.
Think of an SSL certificate like a passport. If the passport is expired, fake, or has the wrong name on it, the guard sends you back. The certificate works the same way.
The four most common reasons
- The certificate has expired. Every SSL certificate has an end date. After that date, browsers reject it. This is the #1 cause.
- The certificate is for the wrong name. A passport with someone else’s photo. The certificate is valid, but it was issued for
example.comand you visitedwww.example.com. - The certificate is signed by an authority your browser does not trust. A passport issued by a country your border control does not recognise.
- The certificate chain is broken. The certificate is fine, but the “supporting documents” the server sends along with it are missing.
How visitors see it
Different browsers, different messages. Same problem:
- Chrome: “Your connection is not private”
- Firefox: “Warning: Potential Security Risk Ahead”
- Safari: “This Connection Is Not Private”
- Edge: “Your connection isn’t private”
Most users click away within seconds. They do not investigate. They do not come back later. That is why this error is so expensive.
How to fix it (if it is your site)
- Scan the domain. Run a free SSL check first - it will tell you exactly which problem you have in a few seconds. Try the free SSL scanner.
- If expired: renew the certificate with your CA or with Let’s Encrypt, then install it on the server.
- If wrong name: reissue the certificate with all the hostnames you use (including
wwwand any subdomains). - If untrusted issuer: reissue with a well-known CA. Self-signed certificates are fine for internal use only.
- If broken chain: install the full chain (leaf + intermediates), not just the leaf certificate.
How to prevent it from happening again
Renewing one certificate is easy. Tracking dozens across teams, environments, and load balancers is where it goes wrong. Set up monitoring so you get a warning 30, 14, 7, 3, and 1 day before each certificate expires - not a 3 a.m. page when traffic drops to zero.
Frequently asked questions
- Is “this website cannot be trusted” always the site owner’s fault?
- Usually yes. It almost always means the site’s SSL certificate is expired, misconfigured, or issued by an authority your browser does not trust. The fix is on the server side.
- Can I safely click “Continue anyway”?
- We do not recommend it. If the certificate cannot be trusted, your connection may not be private. Avoid logging in or entering payment details on a site showing this warning.
- How can I tell if the problem is my computer or the website?
- Try opening the site on another network or device. If the warning still appears, the problem is the website. If it only happens on your machine, check your clock, antivirus SSL inspection, or browser settings.
Check any site in seconds
Scan a domain with our free SSL tool and see the certificate, grade, and any issues - no signup needed.
Related guides
-
Browser Warning About Site Security - What It Means
A friendly tour of browser security warnings and what causes each one.
-
HTTPS Not Working? A Plain-English Troubleshooting Guide
Why HTTPS suddenly stops working and how to diagnose it in under 10 minutes.
-
Common SSL Configuration Errors and How to Fix Them
The SSL configuration mistakes that bite teams in production, in plain English.
From the blog
-
SSL Certificate Outages - 4 Real Incidents and What They Teach Us
Four real-world certificate outages from major companies, in plain English. What broke, how it broke, and the simple monitoring step that would have caught it.