@RCP45

This is not unknown -- your internal network is considered possible hostile territory by some security programs.

Can you click past the error and perhaps add a permanent exception?

Firefox supports this (as a rule).

If you cannot click past in Advanced and set an exception, try removing / adjusting the HTTPS scanning in your security software.

Example:

Solved: Insecure Connection - "Your connection is not secure"

Example > Latest version of Avast Premier

Avast > Settings (bottom left) > Components > Web Shield > Customize >

Under Main settings > UNCHECK / clear Enable HTTPS scanning  > OK

You could also try clearing the box for "Do not scan trusted sites".  Personally, I scan everything -- what is trusted today might be compromised tomorrow.  Personal choice and all that.

Click the Thumbs Up to say Thanks!

Click Post that answers your question "Accept as Solution" to help others find it.

Dragon-Fur

Yes, I can get past the error and get to the EWS page but I still see that red "Not secure" indicaion in the browser.

I think I did answer my own question. I said that this problem just cropped up. I recently started using Chrome insted of FIrefox due to a web page incompatbility. This is when I started seing this situation.

Both Firefox and Chrome give me the option of ignoring the problem and continuing on to the webpage. Firefox adds an excepton and stops giving me warning messages. Chrome also lets me get to the web page BUT still shows the red "Not secure" warning message.

The real problem is that the EWS uses a self signing certificate and both browsers consider that a no-no. Chrome is more insistant in complaining about it.

So, I guess I can live with that.

I should add that a Brother printer I had used a REAL certificate that is still instaled. (The printer is no more.)

@RCP45

Firefox is a bit more forgiving than Chrome -- it is better at doing what it is told (personal opinion).

Firefox is a resource hog (always has been so).  I have been running two browsers lately - Chrome for some things and Firefox for those items for which Firefox is better suited (non-complaining EWS, for example).

I also have a copy of Canary Chrome that I run sometimes, though as we are warned, Canary is Beta and odd things can happen.

At the moment, I have not found a Chrome flag or other setting to change the beastly behavior that decides which content is hostile.

So, the answer (in so much that I am aware): Use Firefox and set an exception or use Chrome, let Chrome complain and power on through.

Cheers.

Thank you for participating in the HP Community Forum.

We are a community of HP enthusiasts dedicated to supporting HP devices and technology.

Dragon-Fur

This is all because the embedded web server certificates are not using the current best practices. Chrome has stopped recongizing certificate Common Names (CN), in favor of Subject Alt Name (SAN). However, HP is not filling out SAN. A very simple fix for them to add to any firmware. Whether they do so or not is another issue.

You can turn ssl off https://support.hp.com/us-en/product/hp-laserjet-4345-multifunction-printer-series/415204/document/c...

Yep. Same issue here. Happens to ALL the HP Printers I have. My lst HP as their tech "Support" is essesntially a bad jke. 

This error  is normal for consumer printers that don't have a registered, certified name.

HTTPS (which uses SSL or TLS) requires a certificate from certifying authority to vouch for a specific device with a specific name.  This process exists so that some site can't pretend to be another site. By using a a "signed certificate," sites like Amazon and Google are protected from impostors: A web browser can detect when a site pretending to be them doesn't have the right "certification."

HP printers ship with a "self-signed" certificate (https://en.wikipedia.org/wiki/Self-signed_certificate) which is not vouched for by anyone. As a result, the browser reports an error. This is not a problem, since you know it is on your network and it is unlikely somone is pretending to be your printer.

You can either just use http instead of https, or you can install the seld-signed certificate in your browser to trust that printer.

Examples for installing a self-signed certificate:

Chrome: https://productforums.google.com/forum/#!topic/chrome/ok44bz_gzyY

Firefox: https://www.poweradmin.com/help/sslhints/firefox.aspx

Read excruciating detail at http://h10032.www1.hp.com/ctg/Manual/c04677863

Another option is to disable these warnings in Google Chrome by typing chrome://flags/#allow-insecure-localhost into the address bar of Chrome and enabling the option 'Allow invalid certificates for resources loaded from localhost'. Restart Chrome. You will still see the 'Not Secure' warning in the address bar when you load the Web Server, however you will not be forced to jump through the warning dialog.