Ensure that All Compatible Web Browsers Display the EV Green Address Bar

When you have an Extended Validation SSL Certificate, you can enable the EV green address bar in all browsers that support it. This gives your visitors a visual assurance of your security and can increase conversion rates on your site.

Untrusted Connection Warning

Green Bar Not Displaying in IE 7 or IE 8

IE sometimes comes with an incomplete list of the roots Microsoft has in its trusted root cert program. You can download a program from their site that will update the root store on the client so that it will trust the certificate root and turn the bar green: Microsoft Update for Root Certificates to download the full root list.

Verify that the DigiCert High Assurance EV Root CA is installed in the Root Certification Authorities Store in the MMC Console

To check this go to Tools > Internet Options >Content > Publishers > Trusted Root Certification Authorities

Verify that the Phishing Filter is enabled

In order to enable the phishing filter in IE 7, go to Tools > Internet Options > Advanced tab. Scroll down to the Phishing Filter section and ensure that Turn on automatic website checking is selected.

NOTE: this may be called the "SmartScreen Filter" in IE 8.

Verify that Server Certificate Revocation is enabled

In order to enable Server Certificate Revocation in IE 7, go to Tools > Internet Options > Advanced tab. Scroll down to the Security section and ensure that Check for server certificate revocation is selected:

  1. Server Certificate Revocation is OFF by default on Windows XP and ON in Vista
  2. You may enable both the Phishing filter and the check for Server Certificate Revocation, but it is not required to have both for the green bar to function. You must have at least one option enabled.

Verify that the 'Root Certificate Valid From' is not 22/Dec/2006

Some certs were issued off of a DigiCert High Assurance Root CA cert that had an incorrect 'Valid To' date. The chain checker will point this out and ask you to update the Root certificate to a different DigiCert High Assurance Root CA certificate with a Valid From date of 01/Oct/2006.

IE 8: Try removing the Entrust.net Root certificate and use the DigiCert High Assurance EV Root CA instead.

Green Bar Not Displaying in Firefox

If you receive a warning that your website does not supply identity information, this means your connection to the site is only partially encrypted and does not prevent eavesdropping. The green bar won't show up if some of the content is being loaded over http (port 80) instead of an https connection (port 443).

For an easy way to check what is partially encrypted or not encrypted on your site try using the Why No Padlock? tool

Additional Support

If you are still having problems with the green bar, please contact us for help troubleshooting the issue.