Open
Cached
·
just now
85/100
SECURITY SCORE
Certificate Information
Subject
C=US, ST=Texas, L=Austin, O=Oracle Corporation, CN=oci-console-01.cloud.oracle.com
Issuer
C=US, O=DigiCert Inc, CN=DigiCert Global G3 TLS ECC SHA384 2020 CA1
Valid From
May 29, 2025
Valid Until
December 10, 2025
32 days
Public Key
ECDSA
256 bit
(P-256)
Adequate
Signature Algorithm
ECDSA-SHA384
SHA-256 Fingerprint
4A:74:9F:94:6F:11:FE:B4:B5:AB:AA:89:84:64:7A:D8:6B:04:37:FD:1F:E0:CE:FB:46:24:4F:D6:34:E0:33:D0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Present
ALLOWALL
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
82 domains
cloud-dev.oracle.com
cloud.oracle.com
activate-oc17.cloud.oracle.com
activate-oc26.cloud.oracle.com
activate-oc27.cloud.oracle.com
activate-oc28.cloud.oracle.com
activate-oc29.cloud.oracle.com
activate-oc35.cloud.oracle.com
activate-oc37.cloud.oracle.com
activate-oc38.cloud.oracle.com
activate-oc39.cloud.oracle.com
activate-oc41.cloud.oracle.com
activate-oc43.cloud.oracle.com
activate-oc46.cloud.oracle.com
oc0.cloud.oracle.com
oc10.cloud.oracle.com
oc14.cloud.oracle.com
oc15.cloud.oracle.com
oc16.cloud.oracle.com
oc17.cloud.oracle.com
oc2.cloud.oracle.com
oc20.cloud.oracle.com
oc21.cloud.oracle.com
oc22.cloud.oracle.com
oc23.cloud.oracle.com
oc24.cloud.oracle.com
oc26.cloud.oracle.com
oc27.cloud.oracle.com
oc28.cloud.oracle.com
oc29.cloud.oracle.com
oc3.cloud.oracle.com
oc35.cloud.oracle.com
oc37.cloud.oracle.com
oc38.cloud.oracle.com
oc39.cloud.oracle.com
oc4.cloud.oracle.com
oc41.cloud.oracle.com
oc43.cloud.oracle.com
oc46.cloud.oracle.com
oc51.cloud.oracle.com
oc8.cloud.oracle.com
oc9.cloud.oracle.com
oci-console-01.cloud.oracle.com
operator.oc17.cloud.oracle.com
operator.oc26.cloud.oracle.com
operator.oc27.cloud.oracle.com
operator.oc28.cloud.oracle.com
operator.oc29.cloud.oracle.com
operator.oc35.cloud.oracle.com
operator.oc37.cloud.oracle.com
operator.oc38.cloud.oracle.com
operator.oc39.cloud.oracle.com
operator.oc41.cloud.oracle.com
operator.oc43.cloud.oracle.com
operator.oc46.cloud.oracle.com
oc4.ocistatus.com
cloud.oracle.eu
console.ap-chuncheon-1.oraclecloud.com
console.ap-hyderabad-1.oraclecloud.com
console.ap-melbourne-1.oraclecloud.com
console.ap-mumbai-1.oraclecloud.com
console.ap-osaka-1.oraclecloud.com
console.ap-seoul-1.oraclecloud.com
console.ap-sydney-1.oraclecloud.com
console.ap-tokyo-1.oraclecloud.com
console.ca-montreal-1.oraclecloud.com
console.ca-toronto-1.oraclecloud.com
console.eu-amsterdam-1.oraclecloud.com
console.eu-frankfurt-1.oraclecloud.com
console.eu-zurich-1.oraclecloud.com
console.me-dubai-1.oraclecloud.com
console.me-jeddah-1.oraclecloud.com
console.sa-santiago-1.oraclecloud.com
console.sa-saopaulo-1.oraclecloud.com
console.sa-vinhedo-1.oraclecloud.com
console.uk-cardiff-1.oraclecloud.com
console.uk-london-1.oraclecloud.com
console.us-ashburn-1.oraclecloud.com
console.us-phoenix-1.oraclecloud.com
console.us-sanjose-1.oraclecloud.com
ocistatus.oci.oraclecloud.com
console.eu-madrid-2.oraclecloud.eu
Other domains in certificate