SSL Certificate Analysis for connect.e2open.com - Security Grade & TLS Configuration

Open Cached · just now

93/100 SECURITY SCORE

Certificate Information

Subject

CN=connect.e2open.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

December 11, 2025

Valid Until

March 11, 2026 32 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

96:40:7D:6F:80:EB:E9:FB:98:68:ED:0C:95:20:D3:9A:92:E8:5A:C2:FF:ED:04:3C:DB:C8:3C:09:5B:E1:B0:FA

Alternative Names

1 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Excellent

max-age=31622400; includeSubDomains; preload

Content-Security-Policy

Basic

default-src; script-src; style-src; +13 more

default-src 'self' 'unsafe-inline' 'unsafe-eval' 'unsafe-inline' 'unsafe-eval' *.vimeo.com 'unsafe-inline' 'unsafe-eval' *.boards-api.greenhouse.io *.vimeo.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'unsafe-inline' 'unsafe-eval' 'report-sample' https://tags.clickagy.com/ cdn.jsdelivr.net pages.e2open.com pages.e2open.com/js/forms2/css/forms2.css blob: *.ep-mimecast.ads-twitter.com *.doubleclick.net *.google.com *.googleadservices.com *.googlesyndication.com *.googletagservices.com *.marketo.com *.nr-data.net https://analytics.twitter.com https://bat.bing.com https://bam.nr-data.net https://cdn.abrankings.com https://connect.facebook.net https://content.linkedin.com https://cdn.syndication.twimg.com https://en.twitter.com https://f.vimeocdn.com https://googleads.g.doubleclick.net https://graph.facebook.com https://google-analytics.com https://googletagmanager.com https://j.6sc.co https://js.adsrvr.org https://js.facebook.com https://js-agent.newrelic.com https://munchkin.marketo.net https://okt.to https://platform.linkedin.com https://platform.twitter.com https://play.vidyard.com https://player.vimeo.com https://r.bing.com https://static.ads-twitter.com https://script.crazyegg.com https://ssl.google-analytics.com https://script.hotjar.com https://static.hotjar.com https://snap.licdn.com https://static-exp1.licdn.com https://static.oktopost.com https://tagmanager.google.com https://t.co https://visitor.reactful.com https://www.clarity.ms https://www.google-analytics.com https://www.googleadservices.com https://www.googleoptimize.com https://www.googletagmanager.com https://www.vimeo.com https://ws.zoominfo.com https://app-sj31.marketo.com/index.php/form/getForm https://bam.nr-data.net/1/NRJS-861f3eedf716c4eaf11 https://bat.bing.com/bat.js https://cdn.abrankings.com/js/client.js https://cdn.syndication.twimg.com/timeline/profile https://connect.facebook.net/en_US/fbevents.js https://googleads.g.doubleclick.net/pagead/viewthroughconversion/722106568/ https://j.6sc.co/6si.min.js https://js-agent.newrelic.com/nr-1216.min.js https://js.adsrvr.org/up_loader.1.1.0.js https://munchkin.marketo.net/munchkin.js https://okt.to/ping https://pages.e2open.com/js/forms2/js/forms2.min.js https://platform.twitter.com/js/moment~timeline.d73eae5387f08ab9f8b71dcf9d12d391.js https://play.vidyard.com/embed/v4.js https://player.vimeo.com/api/player.js https://script.crazyegg.com/pages/scripts/0104/0422.js https://script.hotjar.com/modules.86ab03b5bc9b930d4f53.js https://snap.licdn.com/li.lms-analytics/insight.min.js https://static.ads-twitter.com/uwt.js https://static.hotjar.com/c/hotjar-2184122.js https://static.oktopost.com/oktrk.js https://visitor.reactful.com/dist/main.rtfl.js https://ws.zoominfo.com/pixel/61eeeb0bcd134a001e3eda0d https://www.clarity.ms/tag/uet/17464652 https://www.google-analytics.com/analytics.js https://www.googleadservices.com/pagead/conversion_async.js https://www.googleoptimize.com/optimize.js https://www.googletagmanager.com/gtm.js *.vimeo.com *.vimeocdn.com *.newrelic.com www.googletagservices.com googleads.g.doubleclick.net adservice.google.com adservice.google.ae adservice.google.al adservice.google.at adservice.google.be adservice.google.bg adservice.google.bs adservice.google.ca adservice.google.ch adservice.google.ci adservice.google.cl adservice.google.co.bw adservice.google.co.cr adservice.google.co.id adservice.google.co.il adservice.google.co.in adservice.google.co.jp adservice.google.co.ke adservice.google.co.kr adservice.google.co.mz adservice.google.co.nz adservice.google.co.th adservice.google.co.tz adservice.google.co.uk adservice.google.co.uz adservice.google.co.ve adservice.google.co.za adservice.google.co.zm adservice.google.co.zw adservice.google.com.ai adservice.google.com.ar adservice.google.com.au adservice.google.com.bd adservice.google.com.bh adservice.google.com.bn adservice.google.com.bo adservice.google.com.br adservice.google.com.co adservice.google.com.cy adservice.google.com.ec adservice.google.com.eg adservice.google.com.et adservice.google.com.fj adservice.google.com.gh adservice.google.com.gi adservice.google.com.gt adservice.google.com.hk adservice.google.com.jm adservice.google.com.kh adservice.google.com.kw adservice.google.com.lb adservice.google.com.mm adservice.google.com.mt adservice.google.com.mx adservice.google.com.my adservice.google.com.ng adservice.google.com.ni adservice.google.com.np adservice.google.com.om adservice.google.com.pa adservice.google.com.pe adservice.google.com.ph adservice.google.com.pk adservice.google.com.pr adservice.google.com.py adservice.google.com.qa adservice.google.com.sa adservice.google.com.sg adservice.google.com.sv adservice.google.com.tr adservice.google.com.tw adservice.google.com.ua adservice.google.com.uy adservice.google.com.vn adservice.google.cz adservice.google.de adservice.google.dk adservice.google.dz adservice.google.ee adservice.google.es adservice.google.fi adservice.google.fr adservice.google.ge adservice.google.gr adservice.google.gy adservice.google.hn adservice.google.hr adservice.google.hu adservice.google.ie adservice.google.im adservice.google.iq adservice.google.is adservice.google.it adservice.google.jo adservice.google.kz adservice.google.li adservice.google.lk adservice.google.lt adservice.google.lu adservice.google.lv adservice.google.md adservice.google.mk adservice.google.mu adservice.google.nl adservice.google.no adservice.google.pl adservice.google.pt adservice.google.ro adservice.google.rs adservice.google.ru adservice.google.se adservice.google.si adservice.google.sk adservice.google.so adservice.google.sr adservice.google.tl adservice.google.tn adservice.google.tt google-analytics.com www.google-analytics.com ssl.google-analytics.com stats.g.doubleclick.net ajax.googleapis.com maps.googleapis.com maps.google.com translate.googleapis.com translate.google.com www.googletagmanager.com googletagmanager.com tagmanager.google.com www.gstatic.com *.vimeo.com *.vimeocdn.com *.newrelic.com *.nr-data.net www.googletagservices.com *.googlesyndication.com *.googleadservices.com googleads.g.doubleclick.net adservice.google.com adservice.google.ae adservice.google.al adservice.google.at adservice.google.be adservice.google.bg adservice.google.bs adservice.google.ca adservice.google.ch adservice.google.ci adservice.google.cl adservice.google.co.bw adservice.google.co.cr adservice.google.co.id adservice.google.co.il adservice.google.co.in adservice.google.co.jp adservice.google.co.ke adservice.google.co.kr adservice.google.co.mz adservice.google.co.nz adservice.google.co.th adservice.google.co.tz adservice.google.co.uk adservice.google.co.uz adservice.google.co.ve adservice.google.co.za adservice.google.co.zm adservice.google.co.zw adservice.google.com.ai adservice.google.com.ar adservice.google.com.au adservice.google.com.bd adservice.google.com.bh adservice.google.com.bn adservice.google.com.bo adservice.google.com.br adservice.google.com.co adservice.google.com.cy adservice.google.com.ec adservice.google.com.eg adservice.google.com.et adservice.google.com.fj adservice.google.com.gh adservice.google.com.gi adservice.google.com.gt adservice.google.com.hk adservice.google.com.jm adservice.google.com.kh adservice.google.com.kw adservice.google.com.lb adservice.google.com.mm adservice.google.com.mt adservice.google.com.mx adservice.google.com.my adservice.google.com.ng adservice.google.com.ni adservice.google.com.np adservice.google.com.om adservice.google.com.pa adservice.google.com.pe adservice.google.com.ph adservice.google.com.pk adservice.google.com.pr adservice.google.com.py adservice.google.com.qa adservice.google.com.sa adservice.google.com.sg adservice.google.com.sv adservice.google.com.tr adservice.google.com.tw adservice.google.com.ua adservice.google.com.uy adservice.google.com.vn adservice.google.cz adservice.google.de adservice.google.dk adservice.google.dz adservice.google.ee adservice.google.es adservice.google.fi adservice.google.fr adservice.google.ge adservice.google.gr adservice.google.gy adservice.google.hn adservice.google.hr adservice.google.hu adservice.google.ie adservice.google.im adservice.google.iq adservice.google.is adservice.google.it adservice.google.jo adservice.google.kz adservice.google.li adservice.google.lk adservice.google.lt adservice.google.lu adservice.google.lv adservice.google.md adservice.google.mk adservice.google.mu adservice.google.nl adservice.google.no adservice.google.pl adservice.google.pt adservice.google.ro adservice.google.rs adservice.google.ru adservice.google.se adservice.google.si adservice.google.sk adservice.google.so adservice.google.sr adservice.google.tl adservice.google.tn adservice.google.tt google-analytics.com www.google-analytics.com ssl.google-analytics.com stats.g.doubleclick.net ajax.googleapis.com maps.googleapis.com maps.google.com translate.googleapis.com translate.google.com www.googletagmanager.com googletagmanager.com tagmanager.google.com; style-src 'self' 'unsafe-inline' 'unsafe-inline' 'report-sample' 'unsafe-inline' cdn.jsdelivr.net *.marketo.net *.marketo.com *.licdn.com *.google.com *.bing.com fonts.googleapis.com platform.twitter.com ton.twimg.com www.googletagmanager.com fonts.googleapis.com https://platform.twitter.com https://ton.twimg.com *.vimeocdn.com maps.googleapis.com maps.google.com translate.googleapis.com tagmanager.google.com *.vimeocdn.com fonts.googleapis.com 'unsafe-inline' maps.googleapis.com maps.google.com translate.googleapis.com www.googletagmanager.com tagmanager.google.com; img-src 'self' 'unsafe-inline' data: https://abs.twimg.com https://p.adsymptotic.com https://id.rlcdn.com https://px.ads.linkedin.com px.ads.linkedin.com https://aorta.clickagy.com https://analytics.twitter.com https://b.6sc.co https://bat.bing.com https://pbs.twimg.com https://platform.twitter.com https://px.ads.linkedin.com https://secure.gravatar.com https://syndication.twitter.com https://t.co https://ton.twimg.com https://www.facebook.com https://www.google-analytics.com https://www.google.com https://www.googletagmanager.com *.vidyard.com *.twimg.com *.twitter.com *.clarity.ms *.linkedin.com *.t.co *.bing.com t.co facebook.com zoominfo.com *.google.com *.6sc.co privacy-policy.truste.com px.ads.linkedin.com www.google.com.au *.google.co https://px.ads.linkedin.com/collect s.w.org ps.w.org ts.w.org secure.gravatar.com www.gravatar.com *.googlesyndication.com stats.g.doubleclick.net data: blob: google-analytics.com www.google-analytics.com ssl.google-analytics.com www.google.com *.googleapis.com maps.google.com maps.gstatic.com www.gstatic.com *.ggpht.com translate.googleapis.com translate.google.com i.ytimg.com www.googletagmanager.com qr-code.ithemes.com *.googlesyndication.com stats.g.doubleclick.net data: blob: google-analytics.com www.google-analytics.com ssl.google-analytics.com www.google.com *.googleapis.com maps.google.com maps.gstatic.com www.gstatic.com *.ggpht.com translate.googleapis.com translate.google.com i.ytimg.com www.googletagmanager.com; connect-src 'self' https://809-eog-429.mktoresp.com https://hemsync.clickagy.com https://aorta.clickagy.com/ cdn.linkedin.oribi.io https://ad.doubleclick.net https://api.redirect.li/v1/ https://bam.nr-data.net https://bat.bing.com https://cdn.abrankings.com https://d.clarity.ms https://epsilon.6sense.com https://in.hotjar.com https://ipv6.6sc.co https://script.crazyegg.com https://sheets.googleapis.com https://stats.g.doubleclick.net https://tracking.reactful.com https://visitor.reactful.com https://ws.zoominfo.com https://ws31.hotjar.com https://www.google-analytics.com wss://ws31.hotjar.com *.6sc.co *.facebook.com *.hotjar.com *.clarity.ms secure.adnxs.com *.google-analytics.com vc.hotjar.io assets-tracking.crazyegg.com pages.e2open.com tracking.crazyegg.com pagestates-tracking.crazyegg.com 809-eog-429.mktoutil.com ws32.hotjar.com f.clarity.ms wss://ws30.hotjar.com wss://ws41.hotjar.com *.vimeo.com *.googlesyndication.com googleads.g.doubleclick.net stats.g.doubleclick.net www.google-analytics.com ampcid.google.com analytics.google.com about: maps.googleapis.com maps.google.com translate.googleapis.com www.googletagmanager.com boards-api.greenhouse.io https://809-eog-429.mktoresp.com https://hemsync.clickagy.com https://aorta.clickagy.com/ *.vimeo.com *.googlesyndication.com googleads.g.doubleclick.net stats.g.doubleclick.net www.google-analytics.com ampcid.google.com analytics.google.com about: maps.googleapis.com maps.google.com translate.googleapis.com www.googletagmanager.com; font-src 'self' data: https://fonts.gstatic.com data: fonts.gstatic.com fonts.googleapis.com connecteurope.e2open.com data: fonts.gstatic.com fonts.googleapis.com; object-src 'self' *.googlesyndication.com *.boards-api.greenhouse.io; media-src 'self' ; frame-src 'self' 'unsafe-inline' https://www.google.com play.vidyard.com td.doubleclick.net pages.e2open.com https://11817530.fls.doubleclick.net https://match.adsrvr.org https://app-sj31.marketo.com https://bid.g.doubleclick.net https://insight.adsrvr.org https://player.vimeo.com https://vars.hotjar.com https://www.facebook.com *.vimeo.com *.vimeocdn.com *.googlesyndication.com googleads.g.doubleclick.net maps.googleapis.com maps.google.com www.youtube.com www.googletagmanager.com *.vimeo.com *.vimeocdn.com *.googlesyndication.com googleads.g.doubleclick.net maps.googleapis.com maps.google.com www.youtube.com www.googletagmanager.com; child-src 'self' blob: *.vimeo.com *.googlesyndication.com *.google.com *.facebook.com *.doubleclick.net connect.facebook.net platform.twitter.com vimeo.com www.googletagmanager.com *.vimeocdn.com www.youtube.com *.vimeo.com *.vimeocdn.com www.youtube.com www.googletagmanager.com; worker-src 'self' blob: www.google.com; base-uri 'self' ; form-action 'self' *.twitter.com *.google.com *.facebook.com connect.facebook.net pages.e2open.com; frame-ancestors 'self' t.co twitter.com https://*.paperflite.com google.com; upgrade-insecure-requests; report-uri https://62cf790d4226858c368f8a9c.endpoint.csper.io/?v=0;

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

no-referrer-when-downgrade

Permissions-Policy

Present

accelerometer=(), autoplay=(*), camera=(), display-capture=(), encrypted-media=(self), fullscreen=(self), geolocation=(*), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(self), picture-in-picture=(), publickey-credentials-get=(), usb=(self)

Recommendations

• Improve CSP by adding more specific directives and removing 'unsafe-inline'

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

1 domain

connect.e2open.com