Sometimes when you hit up a site you might see an error pop up something along the lines of the title of this article. This error may or may not be accompanied by other issues. It’s a confusing thing to come across for most people.
The DLG_FLAGS_INVALID_CA error or a few other errors that indicate roughly the same thing such as DLG_FLAGS_SEC_CERT_CN_INVALID or DLG_FLAGS_SEC_CERT_DATE_INVALID indicate an error with the security certificate, otherwise known as the SSL certificate of the website.
In this article, we’re going to talk about these errors, what causes them and what you can do to potentially solve them.
What are these errors?
Aforementioned, these errors pop up when there’s an issue with the site’s security certificate. These certificates are issued to sites that are secure and handle your data in a safe and secure manner. If a site doesn’t have this certificate, it could indicate fishy business.
More often than not the webmaster or the site admin/developer hasn’t either
- Installed an SSL security certificate yet
- Not correctly installed their security certificate
- Not renewed their security certificates
The plaintext error accompanied by these errors often reads “Attackers might be trying to steal your information from domainname.com (for example, passwords, messages, or credit cards).” or something along those lines.
Most people after seeing this would by default close the site and not visit it again, but it’s not as bad as it seems.
What to do if you see this error?
As you can see in the screenshot above, you have two ways out of this
- Close the website
- Go ahead and click the Advanced button that would let you access the site anyway.
Now depending on what you want to do on the site, it’s perfectly fine to just go ahead and visit it. If you’re just looking to browse or look something up, you’re all good to go.
We would, however, advice against filling any forms or giving away any data to said sites for as long as you see these errors. Once the site is restored and the error is resolved, any data you enter is guaranteed to be safe by the certificate provider.
How to fix this issue?
More often than not this is an issue on the backend and is the site administrator’s responsibility to resolve. However, there can possibly be a few things wrong on your end too.
Here are a few things that you can try:
- Clear your browser’s cache(here’s how to do it on Chrome and on Edge)
- Try using another browser.
- Make sure your system date and time is right.
While some guides suggest turning off the Warn About the Certificate Address Mismatch setting off in order to access such sites, we strongly recommend against it as it can put your entire web browsing experience at risk.
If all this is good on your end, chances are the server admin hasn’t renewed or installed the certificate correctly. If you can contact them, send them a message highlighting an issue (maybe link this article).