X
Tap here to go to the mobile version of the site.

Support Forum

every site I try to access gives the warning (Error code: sec_error_unknown_issuer)

Posted

this affects my computer profile only(windows 8) , and only on Firefox. I have disabled SSL on AVG as the help pages suggest, and have tried reinstalling, both with no effect. Anyone know how to solve this?

this affects my computer profile only(windows 8) , and only on Firefox. I have disabled SSL on AVG as the help pages suggest, and have tried reinstalling, both with no effect. Anyone know how to solve this?

Chosen solution

Check the date and time and time zone in the clock on your computer: (double) click the clock icon on the Windows Taskbar.

Check out why the site is untrusted and click "Technical Details" to expand this section. If the certificate is not trusted because no issuer chain was provided (sec_error_unknown_issuer) then see if you can install this intermediate certificate from another source.

You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates.

  • Click the link at the bottom of the error page: "I Understand the Risks"

Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate".

  • Click the "View..." button and inspect the certificate and check who is the issuer of the certificate.

You can see more Details like intermediate certificates that are used in the Details pane.

If "I Understand the Risks" is missing then this page may be opened in an (i)frame and in that case try the right-click context menu and use "This Frame: Open Frame in New Tab".

  • Note that some firewalls monitor (secure) connections and that programs like Sendori or FiddlerRoot can intercept connections and send their own certificate instead of the website's certificate.
  • Note that it is not recommended to add a permanent exception in cases like this, so only use it to inspect the certificate.
Read this answer in context 13

Additional System Details

Application

  • User Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; Trident/7.0; .NET4.0E; .NET4.0C; rv:11.0) like Gecko

More Information

Sourjobraato Banerjee 14 solutions 232 answers

Did you bookmark that specific link?

If you did then you should be cautious to bookmark a link to such specific server as there availability isn't guaranteed. It is usually best to start with the main or login page of such services and navigate to your inbox or strip off the leading domain like the above posted link.

Did you bookmark that specific link? If you did then you should be cautious to bookmark a link to such specific server as there availability isn't guaranteed. It is usually best to start with the main or login page of such services and navigate to your inbox or strip off the leading domain like the above posted link.

Question owner

It is not a specific site, it affects every website, but only on my profile.

It is not a specific site, it affects every website, but only on my profile.
John99 971 solutions 13138 answers

The problem is Firefox thinks you are subject to a Man In The Middle Attack although that my not in fact be what is happening.

Try these steps in sequence until you are able to open a site then report back. Let's see if we can narrow down what is going on.

  1. First of all check the computers time and date are correct.
    That is unlikely to be an issue if other browsers work,
    but it is easy and worthwhile checking that.
  2. Next try turning temporarily off all security software. I suggest you do that only whilst accessing this site (That should limit any risk). This test is because security software can interfere with certificates. ESET and BitDefender are usual culprits here. Remember to turn the security back on.
  3. There is a possibility that your Certificates file could be corrupt. Create a new additional Firefox profile for test purposes and see if that works. (I strongly suggest if you do create any new profile that you do NOT deleted or rename it - there are risks of data loss)
  4. For this site only (known and low risk) bypass the warning by clicking on I understand the risks and following the prompts & questions to add an exception.
The problem is Firefox thinks you are subject to a '' Man In The Middle Attack'' although that my not in fact be what is happening. * See http://simple.wikipedia.org/wiki/Man-in-the-middle_attack **Or for more technical detail http://en.wikipedia.org/wiki/Man-in-the-middle_attack Try these steps in sequence until you are able to open a site then report back. Let's see if we can narrow down what is going on. # First of all check the computers time and date are correct. <br /> That is unlikely to be an issue if other browsers work, <br />but it is easy and worthwhile checking that. #Next try turning temporarily off all security software. I suggest you do that only whilst accessing this site (That should limit any risk). This test is because security software can interfere with certificates. ESET and BitDefender are usual culprits here. Remember to turn the security back on. #There is a possibility that your Certificates file could be corrupt. Create a new additional Firefox profile for test purposes and see if that works. (I strongly suggest if you do create any new profile that you do NOT deleted or rename it - there are risks of data loss) #* see [[Use the Profile Manager to create and remove Firefox profiles]] # For this site only (known and low risk) bypass the warning by clicking on ''I understand the risks'' and following the prompts & questions to add an exception.

Modified by John99

cor-el
  • Top 10 Contributor
  • Moderator
17467 solutions 157838 answers

Chosen Solution

Check the date and time and time zone in the clock on your computer: (double) click the clock icon on the Windows Taskbar.

Check out why the site is untrusted and click "Technical Details" to expand this section. If the certificate is not trusted because no issuer chain was provided (sec_error_unknown_issuer) then see if you can install this intermediate certificate from another source.

You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates.

  • Click the link at the bottom of the error page: "I Understand the Risks"

Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate".

  • Click the "View..." button and inspect the certificate and check who is the issuer of the certificate.

You can see more Details like intermediate certificates that are used in the Details pane.

If "I Understand the Risks" is missing then this page may be opened in an (i)frame and in that case try the right-click context menu and use "This Frame: Open Frame in New Tab".

  • Note that some firewalls monitor (secure) connections and that programs like Sendori or FiddlerRoot can intercept connections and send their own certificate instead of the website's certificate.
  • Note that it is not recommended to add a permanent exception in cases like this, so only use it to inspect the certificate.
Check the date and time and time zone in the clock on your computer: (double) click the clock icon on the Windows Taskbar. Check out why the site is untrusted and click "Technical Details" to expand this section. If the certificate is not trusted because no issuer chain was provided (sec_error_unknown_issuer) then see if you can install this intermediate certificate from another source. You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates. *Click the link at the bottom of the error page: "I Understand the Risks" Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate". *Click the "View..." button and inspect the certificate and check who is the <b>issuer of the certificate</b>. You can see more Details like intermediate certificates that are used in the Details pane. If <b>"I Understand the Risks"</b> is missing then this page may be opened in an (i)frame and in that case try the right-click context menu and use "This Frame: Open Frame in New Tab". *Note that some firewalls monitor (secure) connections and that programs like Sendori or FiddlerRoot can intercept connections and send their own certificate instead of the website's certificate. *Note that it is not recommended to add a permanent exception in cases like this, so only use it to inspect the certificate.

Helpful Reply

That's the issue resolved, had to import the Microsoft family safety certificate manually, thank you for sending me down the right path.

That's the issue resolved, had to import the Microsoft family safety certificate manually, thank you for sending me down the right path.