Firefox - The certificate is not trusted because the issuer certificate is unknown.
Hello,
When viewing my site https://www.site.com I see this error:
https://www.site.com uses an invalid security certificate.
The certificate is not trusted because the issuer certificate is unknown.
(Error code: sec_error_unknown_issuer)
I am using FireFox 38.0.5 on a Windows 8.1 PC. The same site on the same PC is displayed fine with no certificate errors when using MS 11 and Google Chrome.
I have deleted the cert8.db file, but that did not work. I followed these steps:
www.site.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)
Do you have another suggestions?
Thanks,
Paul
When viewing my site https://www.site.com I see this error:
https://www.site.com uses an invalid security certificate.
The certificate is not trusted because the issuer certificate is unknown.
(Error code: sec_error_unknown_issuer)
I am using FireFox 38.0.5 on a Windows 8.1 PC. The same site on the same PC is displayed fine with no certificate errors when using MS 11 and Google Chrome.
I have deleted the cert8.db file, but that did not work. I followed these steps:
www.site.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)
Do you have another suggestions?
Thanks,
Paul
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for the solution.
Well, you can push out certs via group policy (they are just registry keys) but I would suggest more in this case you should find out why they can't reach the intermediate. The way it works is this; the intermediate cert can be (but usually isn't) supplied by the webserver (if you have access to the webserver, you can add it to the cert store on the server for delivery with the actual server cert, and that solves your problem)
Otherwise, you should look at the server cert, and in particular look at the section marked "authority information access" - this is where the intermediate can be found, and if the web browser cannot reach that server, the "fetch" of the intermediate will fail.
Otherwise, you should look at the server cert, and in particular look at the section marked "authority information access" - this is where the intermediate can be found, and if the web browser cannot reach that server, the "fetch" of the intermediate will fail.
ASKER
Now the problem is that users, who are not computer savvy, have this problem. The cert I imported is from MS IE, so I need to figure out how to apply this solution to them.