FacebookTwitterLinkedIn

Safari Can't Establish a Secure Connection - How to Fix?

How to Fix Safari When It Can't Establish a Secure Connection to Server?

After browsing the Internet for some time, the Safari browser might stop loading certain websites. We receive many reports from Mac users stating that they encounter the "a secure connection could not be established" error message when using Safari and Chrome internet browsers.

introduction2

Cleaning browsing data, cache, permissions, and resetting network settings usually resolve various browser-related issues, but these methods do not eliminate the error message itself.

For everyday users and experienced Mac users alike, this problem can be frustrating, but fortunately, having analyzed users' reports and suggestions, we have a number of solutions. Note that there might be several causes of this error message. The easiest way to find a solution is to try all methods mentioned in this guide - these should eliminate the "a secure connection could not be established" error message.

Video showing How to Solve Safari Can't Establish a Secure Connection to Server Issue

Table of Contents:

Manage your DNS settings

DNS server entries might cause this problem. Google suggests that you use their 'open entries' to ensure your connection is secure.

1. To manage DNS settings, open System Preferences and choose Network.
2. Click the Advanced button and select the DNS tab.
3. Remove all existing entries by selecting them and clicking the Minus button.
4. Then click the Add button and type 8.8.8.8. numbers.
5. Repeat the process, and type 8.8.4.4. numbers.
6. Restart the browser and check if the problem is solved.

change-dns

[Back to Table of Contents]

Weak website's encryption

Apple has improved the protection of their products, and as a result, blocks websites that contain weak encryption (websites that do not apply safety certificates that approve a webpage's encryption). Also, Safari might block a server if it detects that the connection route is through any proxy servers.

If your issue is caused by a missing or incorrect certificates problem, follow the steps below:

1. Open the website through another browser such as Mozilla Firefox or Google Chrome. Quite often, Facebook and Twitter are interpreted as threats.
2. Once the alternative browser loads the website, you will see a small green lock next to the URL address. Click the lock.
3. In the new pop-up window, click the More Information button.
4. In the new window, select the Security tab, which is the last option at the bottom.
5. Under the Security tab, click the Show Certificate button and then switch the tab to Details, which is at the top of the new pop-up window.

certificate-info

6. In the window, you will find all information required, including the title of the company providing the certificate. The next step is to run Keychain on the Mac.
7. Open Keychain from the Spotlight search. You can also go to the Utility folder, which is under Applications through Finder. Here, you will find the Keychain application.

select-certificate-mac

8. Once the app has launched, select System Roots to see a list of all certificates.
9. Search for the one being blocked by Safari, double click it, expand the Trust option, and select System's defaults.

Changing this option usually solves the certificate problems caused by a locked mail server. This also prevents other websites from attempting to use this particular server.

trust-certificate

[Back to Table of Contents]

Adjust your Antivirus Web Shield feature

Anti-virus software is developed to protect our computers and content from all possible threats. Since it is an automatic process, small mistakes and mismatches might be flagged as suspicious. Developers include a feature called Web Shield that blocks suspicious websites without indicating what caused the blocked content. So users are often frustrated by unknown issues.

If the methods listed above did not solve the issue, check your anti-virus software. If there is a Web Shield feature enabled, try to disable it and relaunch Safari. Check if the problem is resolved. The method to disable the Web Shield feature will depend on the software you are using.

[Back to Table of Contents]

Try disabling IPv6

Additionally, if none of the above steps solve the problem, there is one final option to try. If possible, attempt to use another Wi-Fi network and check if you are able to visit the same pages without any restrictions.

1. If all websites load correctly, try to disable IPv6 on the router (if it provides this option).
2. Then, open Mac System Preferences and choose Network.
3. Select your network and click Advanced.
4. Select the TCP/IP tab.
5. In the drop-down menu beside Configure IPv6, select Manually.

In the case where Safari cannot establish a secure connection, this should solve the issue.

ipv6-disable-mac

[Back to Top]

▼ Show Discussion

About the author:

Karolina Peistariene

Author of how-to guides for Mac users. Responsible for collecting, analyzing, and presenting problem-solving solution articles related to macOS issues. Years of macOS experience combined with solid research and analyzing skills help Karolina provide readers with working and helpful solutions as well as introduce various features Mac has to offer. Contact Karolina Peistariene.

Our guides are free. However, if you want to support us you can send us a donation.

About PCrisk

PCrisk is a cyber security portal, informing Internet users about the latest digital threats. Our content is provided by security experts and professional malware researchers. Read more about us.

Read this article in other languages
Malware activity

Global malware activity level today:

Medium threat activity

Increased attack rate of infections detected within the last 24 hours.