Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

sec_error_bad_signature only via proxy for https website

  • 5 replies
  • 5 have this problem
  • 30878 views
  • Last reply by khoamach

more options

Hello,

I tried to open https website via company proxy but it does not work.

It's only happened with firefox. Chrome & IE is totally fine.

Thanks for instruction.

Khoa.

Chosen solution

I was suggesting to click the Certificate information link, but there is a clue there that you use Zscaler. We had a thread indicating that you can export the certificates from the Windows certificate store (using either IE or Chrome) and then import those into Firefox: https://support.mozilla.org/questions/986876

I'm not sure whether that is documented in detail anywhere, but please note:

  • In the IE or Chrome certificate viewer, click the Zscaler cert you want to export in the Certification Path tab and use the View Certificate button to open it directly.
  • Then click the Details tab and click the Copy to file button. This starts the Export Wizard. Use the DER format and save to a convenient location.

When finished with all the necessary exports to complete the chain in the Certification Path, you can import the certificates into the Firefox Authorities tab:

  • "3-bar" menu button (or Tools menu) > Options > Advanced > Certificates mini-tab > "View Certificates" button > Authorities mini-tab > "Import" button
  • I suggest allowing the certificate for websites only unless your IT suggests otherwise

Attaching some screen shots for reference.

Read this answer in context 👍 2

All Replies (5)

more options

Screenshot attached

more options

If you visit that site in Chrome or IE and click the padlock icon to view the certificate (in Chrome, click Connection to get to the Certificate information link), what do you see for the Issued by field? I have attached a screen shot for comparison.

more options

jscher2000 said

If you visit that site in Chrome or IE and click the padlock icon to view the certificate (in Chrome, click Connection to get to the Certificate information link), what do you see for the Issued by field? I have attached a screen shot for comparison.

Hello,

Thanks for prompt response. Attached is screenshot as your requested

Modified by khoamach

more options

Chosen Solution

I was suggesting to click the Certificate information link, but there is a clue there that you use Zscaler. We had a thread indicating that you can export the certificates from the Windows certificate store (using either IE or Chrome) and then import those into Firefox: https://support.mozilla.org/questions/986876

I'm not sure whether that is documented in detail anywhere, but please note:

  • In the IE or Chrome certificate viewer, click the Zscaler cert you want to export in the Certification Path tab and use the View Certificate button to open it directly.
  • Then click the Details tab and click the Copy to file button. This starts the Export Wizard. Use the DER format and save to a convenient location.

When finished with all the necessary exports to complete the chain in the Certification Path, you can import the certificates into the Firefox Authorities tab:

  • "3-bar" menu button (or Tools menu) > Options > Advanced > Certificates mini-tab > "View Certificates" button > Authorities mini-tab > "Import" button
  • I suggest allowing the certificate for websites only unless your IT suggests otherwise

Attaching some screen shots for reference.

more options

It works like a charm. Thanks for your support @jscher2000