Certificate and TLS details for any domain. Version, cipher, chain.
The SSL/TLS Checker connects to a domain and reports TLS version, negotiated cipher suite, and certificate details. Use it to verify that TLS 1.2 or 1.3 is used, that weak ciphers are disabled, and that the certificate chain is valid. One-stop for TLS configuration review.
Prefer TLS 1.3; allow TLS 1.2. Disable 1.0 and 1.1.
Ephemeral key exchange (e.g. ECDHE) so past traffic cannot be decrypted if keys are later compromised.
Version or cipher mismatch, or certificate problem. The checker shows what was negotiated; compare with client requirements.
This tool uses one client profile. For broad compatibility test with browser or other TLS clients.
Some checkers do. Look for OCSP staple in the TLS handshake output.