SSL Certificate Analysis for test.api.easyproweb.abb.com - Security Grade & TLS Configuration | DNS Gurus

Open Cached · just now

92/100 SECURITY SCORE

Certificate Information

Subject

C=CH, ST=Zürich, L=Zürich, O=ABB Asea Brown Boveri Ltd, CN=waf-abb-cert19.abb.com

Issuer

C=US, O=DigiCert Inc, CN=DigiCert Global G3 TLS ECC SHA384 2020 CA1

Valid From

December 10, 2025

Valid Until

May 12, 2026 115 days

Public Key

ECDSA 256 bit (P-256) Adequate

Signature Algorithm

ECDSA-SHA384

SHA-256 Fingerprint

59:08:7C:9F:6C:3D:96:19:27:0A:B0:43:06:CC:17:79:D4:78:46:E1:81:AD:EF:71:54:76:82:53:80:EE:EA:A4

Alternative Names

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Excellent

max-age=31536000; includeSubDomains; preload

Content-Security-Policy

Basic

default-src

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

no-referrer

Permissions-Policy

Missing

Not configured

Recommendations

• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

99 domains

chatbotpa.abb.com drivehub.abb.com maschinenbau.abb.com measurement-care.abb.com powercore.abb.com rap.abb.com robotcare.abb.com seasons-greetings.abb.com secureremote.abb.com waf-abb-cert19.abb.com api.abby.abb.com api.coresolutions.abb.com api.ordertracker.abb.com ar.drivehub.abb.com dev.econfigure.abb.com dev.insite.abb.com discountguidance.robotics.abb.com gmaochassieu.fr.abb.com new.fletch.abb.com plm.robotics.abb.com preprod.drivehub.abb.com qa.easyproweb.abb.com qa.econfigure.abb.com remote-expertise.powertrain.abb.com stage.econfigure.abb.com stage.insite.abb.com stage.measurement-care.abb.com stage.robotcare.abb.com stage.seasons-greetings.abb.com storage.traction.abb.com studio.drivehub.abb.com test.bimagicdesigner.abb.com test.drivehub.abb.com test.econfigure.abb.com test.smarterpro.abb.com api.products.electrificationtools.abb.com api.qa.easyproweb.abb.com api.smart-ip-configurator.mybuildings.abb.com api.stage.ordertracker.abb.com demo.aquamasterplus.measurementservice.abb.com dev-estserver.devicemanagement.motion.abb.com dev.api.easyproweb.abb.com dev.api.insite.abb.com dev.be.easyproweb.abb.com dev.customizing.mybuildings.abb.com dev.de.easyproweb.abb.com dev.docweb.econfigure.abb.com dev.electrification.coursefinder.abb.com dev.storage.traction.abb.com dev.tripcurves.econfigure.abb.com preprod.ar.drivehub.abb.com stage.api.easyproweb.abb.com stage.api.insite.abb.com stage.be.easyproweb.abb.com stage.customizing.mybuildings.abb.com stage.discountguidance.robotics.abb.com stage.electrification.coursefinder.abb.com stage.webapi.edcs.abb.com test-estserver.devicemanagement.motion.abb.com test.api.easyproweb.abb.com test.ar.drivehub.abb.com test.be.easyproweb.abb.com test.docweb.econfigure.abb.com test.otcweb.econfigure.abb.com test.tripcurves.econfigure.abb.com api.dev.docweb.econfigure.abb.com api.dev.electrification.coursefinder.abb.com api.dev.otcweb.econfigure.abb.com api.dev.products.electrificationtools.abb.com api.dev.tripcurves.econfigure.abb.com api.stage.electrification.coursefinder.abb.com api.test.docweb.econfigure.abb.com api.test.otcweb.econfigure.abb.com api.test.tripcurves.econfigure.abb.com cloud.stg.connect.robotics.abb.com demo.api.aquamasterplus.measurementservice.abb.com demo.onboardpro.aquamasterplus.measurementservice.abb.com dev.admin.customizing.mybuildings.abb.com dev.niessen.customizing.mybuildings.abb.com dev.plc.goselect.motion.abb.com dev.plcconfigurator.goselect.motion.abb.com qa.plc.goselect.motion.abb.com qa.plcconfigurator.goselect.motion.abb.com stage.api.customizing.mybuildings.abb.com stage.niessen.customizing.mybuildings.abb.com test.api.eapprove.us.abb.com api.cloud.stg.connect.robotics.abb.com auth.cloud.stg.connect.robotics.abb.com demo.api.onboardpro.aquamasterplus.measurementservice.abb.com dev.api.admin.customizing.mybuildings.abb.com stage.api.admin.customizing.mybuildings.abb.com

Other domains in certificate

dev.api.marketplace.ability.abb

api.dev.customizing.busch-jaeger.de brand.busch-jaeger.de dev.brand.busch-jaeger.de dev.customizing.busch-jaeger.de stage.customizing.busch-jaeger.de

mondo.abb www.mondo.abb