SSL Certificate Analysis for support.scale-tec.com - Security Grade & TLS Configuration

Certificate Information

Subject

CN=espace-resident.jutras.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

December 10, 2025

Valid Until

March 10, 2026 67 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

60:31:F1:5E:3B:D9:EF:08:2F:CE:E1:A1:40:C7:19:50:47:57:56:59:3D:60:82:CF:CF:21:59:AE:DD:FC:14:20

Alternative Names

54 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=63072000;includeSubDomains

Content-Security-Policy

Basic

script-src; object-src; base-uri; +1 more

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Present

accelerometer=(), ambient-light-sensor=(), bluetooth=(), compute-pressure=(), document-domain=(), encrypted-media=(), gamepad=(), gyroscope=(), hid=(), magnetometer=(), midi=(), screen-wake-lock=(), serial=(), speaker-selection=(), usb=(), xr-spatial-tracking=()

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Improve CSP by adding more specific directives and removing 'unsafe-inline'

CAA Records (Certificate Authority Authorization)

CAA Records

Configured (Restricts certificate issuance)

Current Issuer

Authorized (Matches CAA policy)

Authorized CAs

amazon.com digicert.com letsencrypt.org sectigo.com

Recommendations

• Consider using critical flag (flags=128) for stricter CAA enforcement
• You have authorized 4 CAs - consider limiting to only the CAs you actively use
• Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
• Consider adding 'issuewild' records to control wildcard certificate issuance

Subject Alternative Names

54 domains

support.scale-tec.com

Other domains in certificate

support.adaptsys.com

soporte.andesred.com

soporte.base10.es

support.berga.com

support.bizitgroup.com

support.bluematrixtech.com

helpdesk.brandquantum.com

helpdesk.cambridgegroupofclubs.com

support.chambersolutions.com

fusionwiki.clearmatch.co

destek.teknobay.com.tr

support.customatics.be

support.dailymenus.com

support.exectras.com

helpdesk.fuzeit.net

gms.genesys.com

360soporte.geoagro.com

support.glantus.com

support.hexagondata.io

mijnhelpdesk.htjz.nl

support.iij-engineering.co.jp

help.invogreen.com

support.it-griffin.com

soporte.jbsoluciones.co

espace-resident.jutras.com

suporte.kpadvs.com

support.lucamedco.com

support.magedirect.co

support.mapit.me

support.moolahsense.com

helpdesk.neurohydrate.com

help.nmrpsp.org

support.optimusinfo.com

relacionamento.abrapp.org.br

support.ownyourai.com

euservice.powertap.com

support.qualityxpert.com

mobilesupport.realquantum.com

helpdesk.siliconmechanics.com

soporte.simtastic.cl

support.softnetdata.com

helpdesk.sofynetech.com

support.swatxsolutions.com

support.talk2meus.com

support.thinkwp.io

soporte.tidyant.com

ajuda.tiino.com.br

help.towsoft.ca

helpdesk.turner-it.co.uk

support.wagtime.co

ticket.wearesymmetry.com

help.wrenvironmental.com

support.xpandretail.com