Open
Cached
·
just now
81/100
SECURITY SCORE
Certificate Information
Subject
C=US, ST=Minnesota, O=UnitedHealth Group Inc., CN=prod-peopleshealth.uhc.com
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Organization Validation Secure Server CA
Valid From
June 17, 2025
Valid Until
June 17, 2026
136 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
28:82:C0:22:D0:CA:8A:62:9F:81:02:D4:95:87:7E:07:76:94:9A:9C:AC:73:08:A1:8E:7E:02:E3:90:F8:DD:72
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
Forward Secrecy
Limited
(Check cipher configuration)
Warnings
- • TLS 1.3 is not supported (recommended)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=16070400; includeSubDomains; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
33 domains
primarycareplus.com
www.primarycareplus.com
getmedicarelouisiana.com
aep.peopleshealth.com
champions.peopleshealth.com
clinicalservices.peopleshealth.com
fitness.peopleshealth.com
memberservices.peopleshealth.com
onepass.peopleshealth.com
peopleshealth.com
producers.peopleshealth.com
providerblog.peopleshealth.com
providerreferenceguide.peopleshealth.com
surveys.peopleshealth.com
www.peopleshealth.com
peopleshealthconnection.com
www.peopleshealthconnection.com
peopleshealthwellnesscenter.com
www.peopleshealthwellnesscenter.com
aep.prod-peopleshealth.uhc.com
champions.prod-peopleshealth.uhc.com
clinicalservices.prod-peopleshealth.uhc.com
memberservices.prod-peopleshealth.uhc.com
peopleshealth.prod-peopleshealth.uhc.com
peopleshealthconnection.prod-peopleshealth.uhc.com
peopleshealthwellnesscenter.prod-peopleshealth.uhc.com
primarycareplus.prod-peopleshealth.uhc.com
prod-peopleshealth.uhc.com
producers.prod-peopleshealth.uhc.com
providerblog.prod-peopleshealth.uhc.com
providerreferenceguide.peopleshealth.uhc.com
providerreferenceguide.prod-peopleshealth.uhc.com
surveys.prod-peopleshealth.uhc.com
Other domains in certificate