CUSTOMSMUG

How to Fix "Your Connection Is Not Private" Error on SmugMug

Troubleshoot SSL certificate errors when using a custom domain with your SmugMug website.

After adding a custom domain to SmugMug, you might encounter a browser warning that says "Your connection is not private" or "NET::ERR_CERT_AUTHORITY_INVALID". This article explains why this happens and how to fix it.

Why this error occurs

When you add a custom domain to SmugMug, their system needs to generate an SSL certificate for your domain. This certificate enables secure HTTPS connections. The error appears when:

  1. The certificate hasn't been generated yet — This is the most common cause
  2. You're accessing the non-www version — SSL only covers the www subdomain by default
  3. DNS changes haven't propagated — SmugMug can't issue a certificate until DNS is correct

Solution 1: Wait for certificate generation

SSL certificates typically generate within a few minutes to 24 hours after adding your domain to SmugMug.

What to do:

  1. Wait 24 hours after adding your domain
  2. Clear your browser cache and cookies
  3. Restart your browser
  4. Try accessing your site again

If you're still seeing the error after 24 hours, contact SmugMug Support. They can manually generate the SSL certificate for your domain.

Solution 2: Use the correct URL

SmugMug generates SSL certificates for the www version of your domain only. This means:

  • https://www.yourdomain.com — Works with SSL
  • https://yourdomain.com — May show an error

Always use the www version:

https://www.yourdomain.com

Set up domain forwarding

To ensure visitors who type the non-www version still reach your site securely, set up domain forwarding at your registrar:

  1. Forward yourdomain.comhttps://www.yourdomain.com
  2. Use a 301 permanent redirect

This ensures all traffic goes to the SSL-secured www version.

Solution 3: Use Cloudflare for full SSL

If you need SSL on both www and non-www versions, you can use Cloudflare as a proxy:

  1. Sign up for a free Cloudflare account
  2. Transfer your domain's nameservers to Cloudflare
  3. Configure Cloudflare's SSL settings to "Full"
  4. Set up page rules to redirect non-www to www

This approach provides SSL everywhere and can improve site performance through Cloudflare's CDN.

Cloudflare setup requires changing your domain's nameservers. If you're not comfortable with DNS management, stick with the standard SmugMug setup using the www version only.

Troubleshooting checklist

If the error persists:

  • Verify your CNAME record points to domains.smugmug.com
  • Confirm DNS changes have propagated (wait 72 hours)
  • Clear browser cache and cookies
  • Try in an incognito/private window
  • Test on a different device or network
  • Contact SmugMug Support for manual certificate generation

Browser-specific notes

Different browsers display this error differently:

  • Chrome: "Your connection is not private"
  • Firefox: "Warning: Potential Security Risk Ahead"
  • Safari: "This Connection Is Not Private"
  • Edge: "Your connection isn't private"

The solution is the same regardless of which browser shows the error.

Redirect using Cloudflare

Set up proper HTTPS redirects for your SmugMug custom domain using Cloudflare's free tier.

On this page

Why this error occurs
Solution 1: Wait for certificate generation
Solution 2: Use the correct URL
Set up domain forwarding
Solution 3: Use Cloudflare for full SSL
Troubleshooting checklist
Browser-specific notes