What is HSTS?
HSTS is a security feature that makes browsers use only secure HTTPS connections for certain websites, protecting against attacks like SSL stripping that downgrade connections to HTTP. However, if SSL/TLS certificates are misconfigured or expired, HSTS can cause errors like “Your connection is not private” and block access to websites without allowing a bypass. If the site works on another browser or device, it’s likely an HSTS issue. Clearing or disabling HSTS can temporarily fix the error, but this reduces security.
1. Clear HSTS settings in Chrome
A problem with HSTS settings in Chrome typically results in a “Your connection is not private” error. By expanding the Advanced menu linked to this error, you might see a note about HSTS, such as “You cannot visit website name because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later.”
2. Clear or Disable HSTS settings in Firefox
Compared to Chrome, Firefox offers multiple ways to clear or disable HSTS settings. We will start with the automatic methods, but manual approaches are also included.
2.1. Clear the Settings by Forgetting the Website
If this method wasn’t effective or you’re looking to clear the HSTS settings without clearing the rest of your cached data, move to the other methods below.
2.2 Clear HSTS by Clearing Site Preferences
2.3. Clear the HSTS settings by editing the user profile
2.4. Disable HSTS from inside the Firefox Browser
3. Clearing or Disabling HSTS settings in Internet Explorer
HSTS is a key security feature and is enabled by default in both Internet Explorer and Microsoft Edge. While it’s generally advised not to disable HSTS in these browsers, you can disable it in Internet Explorer if necessary. Note: The procedure is longer if you have an x64-based system than if you have an x86-based system.
