Open
Cached
·
just now
85/100
SECURITY SCORE
Certificate Information
Subject
C=FR, ST=Île-de-France, L=Rueil-Malmaison, O=Schneider Electric Industries SAS, CN=aliases6.schneider-electric.com
Issuer
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1
Valid From
March 04, 2025
Valid Until
March 20, 2026
59 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EF:AF:C2:87:B1:12:6B:69:46:45:02:35:A4:01:2B:A9:A4:CC:01:B4:ED:43:69:14:51:4A:3D:D4:15:4D:DB:48
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
Forward Secrecy
Limited
(Check cipher configuration)
Warnings
- • TLS 1.3 is not supported (recommended)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Good
default-src; script-src; img-src; +11 more
default-src 'self'; script-src 'self' 'nonce-M227TrgBEPrCWAYU7yhGxn4BP8D7ANCuQtO1WywG5Vmn5dKUO6WJZw' https://consent.cookiebot.com https://consentcdn.cookiebot.com https://svrdntfctn.com https://maps.googleapis.com https://www.googletagmanager.com https://www.google-analytics.com https://snap.licdn.com 'report-sample'; img-src 'self' https://consentcdn.cookiebot.com https://imgsct.cookiebot.com https://www.google.de https://www.google.com https://google.com https://www.google.es https://www.google.nl https://www.google.com.br https://www.google.pl https://maps.googleapis.com https://www.googletagmanager.com https://www.google-analytics.com https://region1.google-analytics.com https://maps.gstatic.com https://px.ads.linkedin.com https://px4.ads.linkedin.com https://googleads.g.doubleclick.net data:; base-uri 'self'; frame-src 'self' https://consentcdn.cookiebot.com https://consent.cookiebot.com https://outlook.office365.com https://www.youtube-nocookie.com https://www.youtube.com https://td.doubleclick.net https://www.googletagmanager.com; upgrade-insecure-requests; frame-ancestors 'none'; object-src 'none'; form-action 'self'; style-src 'self' https://consent.cookiebot.com 'report-sample'; style-src-elem 'self' https://consent.cookiebot.com 'unsafe-inline' 'report-sample'; connect-src 'self' https://consentcdn.cookiebot.com https://www.google-analytics.com https://stats.g.doubleclick.net https://svrdntfctn.com https://www.google.com https://google.com https://region1.analytics.google.com https://region1.google-analytics.com https://googleads.g.doubleclick.net https://px.ads.linkedin.com https://maps.googleapis.com https://fonts.googleapis.com https://pagead2.googlesyndication.com; report-to 'none'; report-uri https://www.proleit.com/@http-reporting?csp=report&requestTime=1768885881723985&requestHash=7e1e44b0975043bc75efc76ecf803cf8d73836cd
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Strengthen CSP by removing 'unsafe-eval'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
180 domains
proleit.de
recall.apc.com
apwpresident.com
order.ascopower.cn
ascopowerquest.com
www.ascopowerservices.com
brewmax.com
www.brewmax.com
brewmax.de
www.brewmax.de
brewmaxx.com
www.brewmaxx.com
brewmaxx.com.br
www.brewmaxx.com.br
brewmaxx.de
www.brewmaxx.de
camswitch-configurator.com
www.camswitch-configurator.com
choosecommunitysolar.com
www.choosecommunitysolar.com
clipsalanalytics.com
www.clipsalanalytics.com
clipsalenergy.com
www.clipsalenergy.com
clipsalenergy.com.au
www.clipsalenergy.com.au
clipsalsolar.au
www.clipsalsolar.au
clipsalsolar.com.au
www.clipsalsolar.com.au
infra.schneider-electric.co.in
schneider-electric.co.tz
www.schneider-electric.co.tz
proleit.com.gt
www.proleit.com.gt
communitysolardirectory.com
www.communitysolardirectory.com
communitysolarplans.com
www.communitysolarplans.com
communitysolarprices.com
www.communitysolarprices.com
communitysolarproviders.com
www.communitysolarproviders.com
dinel.fr
www.dinel.fr
easolar.org
www.easolar.org
elko.no
elko.se
elkoenergy.no
www.elkoenergy.no
elkosmart.no
www.elkosmart.no
energybyclipsal.com
www.energybyclipsal.com
energybyclipsal.com.au
www.energybyclipsal.com.au
energyclipsal.com
www.energyclipsal.com
energyclipsal.com.au
www.energyclipsal.com.au
energysage.co.uk
www.energysage.co.uk
energysage.es
www.energysage.es
energysage.in
www.energysage.in
energysage.mobi
www.energysage.mobi
energysage.net
www.energysage.net
energysage.org
www.energysage.org
esmifire.com
www.esmifire.com
feller.ch
flowexpertpro.com
www.flowexpertpro.com
getlocalsolar.com
www.getlocalsolar.com
igss.com
www.igss.com
innovatinos.de
www.innovatinos.de
lifesf6free.eu
myseretirement.com
www.myseretirement.com
collect.newlifese.com
newlifese.com
www.newlifese.com
nxtcontrol.com
nxtcontrol.info
www.nxtcontrol.info
oreg-drayton.de
www.oreg-drayton.de
plant-it.com
www.plant-it.com
plant-it.de
www.plant-it.de
plantit.com.br
www.plantit.com.br
plantit.de
www.plantit.de
www.plc-converter.com
proface.com
proleit.bg
www.proleit.bg
proleit.biz
www.proleit.biz
proleit.co.uk
www.proleit.co.uk
proleit.com
proleit.com.br
proleit.com.mx
www.proleit.com.mx
proleit.es
proleit.mx
www.proleit.mx
proleit.nl
proleit.ua
www.proleit.ua
ritto.de
www.ritto.de
pensions.schneider-electric.co.uk
aliases6.schneider-electric.com
antifake.schneider-electric.com
ecofit.schneider-electric.com
m.productviewer.buildings.schneider-electric.com
solar.schneider-electric.com
volunteerin.schneider-electric.com
www.hvacshop.schneider-electric.com
drivestartup.schneider-electric.us
schneider-powerdivision.com
schneiderhome.com
www.schneiderhome.com
schneiderpontos.com
schneiderpuntos.com
energy.schneideruniversities.com
www.schneideruniversities.com
se-powersystems.com
se-securepower.net
se-sustainabilityteam.com
ai.se.com
cndi.se.com
community.exchange.se.com
myretirement.se.com
palearningservices.se.com
stepup.se.com
support.dk.se.com
uat-community.exchange.se.com
se.ventures
www.se.ventures
securepower-se.net
sepowergroup.com
serck-controls.co.uk
www.serck-controls.co.uk
seventures.com
www.seventures.com
sharedsolarpanels.com
www.sharedsolarpanels.com
shopcommunitysolar.com
www.shopcommunitysolar.com
snapfix.ch
www.snapfix.ch
solarbyclipsal.com
www.solarbyclipsal.com
solarbyclipsal.com.au
www.solarbyclipsal.com.au
solarclipsal.com
www.solarclipsal.com
solarclipsal.com.au
www.solarclipsal.com.au
thorsman.cz
www.thorsman.cz
transfo-services-france.fr
www.transfo-services-france.fr
transfoservices.fr
www.transfoservices.fr
trendpoint.com
www.zeigo.co.uk
Other domains in certificate