Check whether the padlock icon is displaying on your HTTPS website and find out why it might be missing. This tool detects insecure mixed content, HTTP resources, and certificate issues on any web page.
Simply enter your site URL or page URL below and click Check. The tool will scan the page for insecure resources that may be blocking the padlock.
Even after installing an SSL certificate, browsers may still show a warning instead of a padlock if the page loads any resources (images, scripts, stylesheets, iframes) over HTTP instead of HTTPS. This is called "mixed content" and it degrades the security of your page.
If your page loads images via http:// URLs, browsers will flag it as not fully secure. Update all image references to use https://.
External JavaScript or CSS loaded from HTTP sources will trigger a mixed content warning. Always load third-party resources over HTTPS.
Iframes pointing to HTTP URLs are considered insecure content. Ensure all embedded frames use HTTPS sources or remove them from your page.
WordPress sites migrating from HTTP to HTTPS often have old HTTP URLs stored in the database. Use a search-replace plugin or WP-CLI to update all references.