Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Please ask a new question if you need help.

Connection not secure error on almost all sites including google.

  • 2 replies
  • 113 have this problem
  • 2424 views
  • Last reply by virkies

virkies
virkies
more options

I get this error on almost all sites. Example below for a search on google.

Your connection is not secure

The owner of www.google.com has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website.

This site uses HTTP Strict Transport Security (HSTS) to specify that Firefox may only connect to it securely. As a result, it is not possible to add an exception for this certificate.


https://www.google.com/search?q=adsasd&ie=utf-8&oe=utf-8&client=firefox-b-ab

Peer’s Certificate issuer is not recognized.

HTTP Strict Transport Security: false HTTP Public Key Pinning: true

Certificate chain:

BEGIN CERTIFICATE-----

MIIEHjCCAwagAwIBAgIIOWEMKAAAAAAwDQYJKoZIhvcNAQELBQAwgd0xCzAJBgNV BAYTAkdCMQ8wDQYDVQQIEwZMb25kb24xDzANBgNVBAcTBkxvbmRvbjEfMB0GA1UE ChMWUm95YWwgQmFuayBvZiBTY290bGFuZDElMCMGA1UECxMcRGlnaXRhbCBFbmdp bmVlcmluZyBTZXJ2aWNlczEgMB4GA1UEAxYXbG9uYnAwMDAwMV9sb25kb25fcHJv eHkxQjBABgkqhkiG9w0BCQEWMypDSUJEVEVTZUNvbW1lcmNlSW5mcmFzdHJ1Y3R1 cmVQcm94eVN1cHBvcnRAcmJzLmNvbTAeFw0xODAxMTAwOTM5MDBaFw0xODA0MDQw OTM5MDBaMGgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRYwFAYD VQQHDA1Nb3VudGFpbiBWaWV3MRMwEQYDVQQKDApHb29nbGUgSW5jMRcwFQYDVQQD DA53d3cuZ29vZ2xlLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANzxGbWp0Mp36H55zzgvvrG5ZDNjDCDUxIK1TmZabRlZmzhtPtv5Flm2ttE2P78o xJSa6lw3j79pFoKxQ+RdIa4wqmXRa6pEkfZoj7pfI7+AVs60Cis3aALvc+7VUXVe zXi/5gluujqkQzKR3M3kXAilNMRQsmiCDMPQHLO9U3Xd4Z17L8cT2s76Fx8Jtshg 54bqrGhsjsvowBvlBteCvIVIXVb6nj4Mzhe0z3S4B48UKDX2luD+I9GGO5e2//g1 2jrgUCw8I44LQ3Nr60Ma/fs5lo4slMTO7QuSIM94BOWwk8u0LuFfAt1gwzj6zXvC gybXOpVW0UCP061xdBkUYjkCAwEAAaNWMFQwCQYDVR0TBAIwADALBgNVHQ8EBAMC BeAwHwYDVR0jBBgwFoAUA1X1VxIsZaIBded+fqBKhmrhfjEwGQYDVR0RBBIwEIIO d3d3Lmdvb2dsZS5jb20wDQYJKoZIhvcNAQELBQADggEBAIlNadiUw9GTbvtAp7r2 osyCHIYx6ca8sH+atUU2lBh2+Cg14H/Senj722KqRX2S66ovx/vj8NJdO9NIM1Lw zdiTM0Aad0HMces+JWYO0LHmnb9O8UPQVP+cOI7qSB3qTgp+u10Cp42xQOuG2mbF frMUiSIr58VpB9zIvnEmbyIQgUJldbNngAdNdo5WEF/EUpxCMnlJt5K+9DS+/KOP J54akXfKKGU8/RV4w6P3W40n3l0mJ6eyAB4x9nDqWorvDZjP80JRev07tz0i85Iq 18ySO6qiMRi+tIYOQO7nOjS1xm7P48mQZp9AJ4kXN4nSkgDzQPEBzFc+sxv17PHo Cpw=

END CERTIFICATE-----
I get this error on almost all sites. Example below for a search on google. Your connection is not secure The owner of www.google.com has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website. This site uses HTTP Strict Transport Security (HSTS) to specify that Firefox may only connect to it securely. As a result, it is not possible to add an exception for this certificate. https://www.google.com/search?q=adsasd&ie=utf-8&oe=utf-8&client=firefox-b-ab Peer’s Certificate issuer is not recognized. HTTP Strict Transport Security: false HTTP Public Key Pinning: true Certificate chain: -----BEGIN CERTIFICATE----- MIIEHjCCAwagAwIBAgIIOWEMKAAAAAAwDQYJKoZIhvcNAQELBQAwgd0xCzAJBgNV BAYTAkdCMQ8wDQYDVQQIEwZMb25kb24xDzANBgNVBAcTBkxvbmRvbjEfMB0GA1UE ChMWUm95YWwgQmFuayBvZiBTY290bGFuZDElMCMGA1UECxMcRGlnaXRhbCBFbmdp bmVlcmluZyBTZXJ2aWNlczEgMB4GA1UEAxYXbG9uYnAwMDAwMV9sb25kb25fcHJv eHkxQjBABgkqhkiG9w0BCQEWMypDSUJEVEVTZUNvbW1lcmNlSW5mcmFzdHJ1Y3R1 cmVQcm94eVN1cHBvcnRAcmJzLmNvbTAeFw0xODAxMTAwOTM5MDBaFw0xODA0MDQw OTM5MDBaMGgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRYwFAYD VQQHDA1Nb3VudGFpbiBWaWV3MRMwEQYDVQQKDApHb29nbGUgSW5jMRcwFQYDVQQD DA53d3cuZ29vZ2xlLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANzxGbWp0Mp36H55zzgvvrG5ZDNjDCDUxIK1TmZabRlZmzhtPtv5Flm2ttE2P78o xJSa6lw3j79pFoKxQ+RdIa4wqmXRa6pEkfZoj7pfI7+AVs60Cis3aALvc+7VUXVe zXi/5gluujqkQzKR3M3kXAilNMRQsmiCDMPQHLO9U3Xd4Z17L8cT2s76Fx8Jtshg 54bqrGhsjsvowBvlBteCvIVIXVb6nj4Mzhe0z3S4B48UKDX2luD+I9GGO5e2//g1 2jrgUCw8I44LQ3Nr60Ma/fs5lo4slMTO7QuSIM94BOWwk8u0LuFfAt1gwzj6zXvC gybXOpVW0UCP061xdBkUYjkCAwEAAaNWMFQwCQYDVR0TBAIwADALBgNVHQ8EBAMC BeAwHwYDVR0jBBgwFoAUA1X1VxIsZaIBded+fqBKhmrhfjEwGQYDVR0RBBIwEIIO d3d3Lmdvb2dsZS5jb20wDQYJKoZIhvcNAQELBQADggEBAIlNadiUw9GTbvtAp7r2 osyCHIYx6ca8sH+atUU2lBh2+Cg14H/Senj722KqRX2S66ovx/vj8NJdO9NIM1Lw zdiTM0Aad0HMces+JWYO0LHmnb9O8UPQVP+cOI7qSB3qTgp+u10Cp42xQOuG2mbF frMUiSIr58VpB9zIvnEmbyIQgUJldbNngAdNdo5WEF/EUpxCMnlJt5K+9DS+/KOP J54akXfKKGU8/RV4w6P3W40n3l0mJ6eyAB4x9nDqWorvDZjP80JRev07tz0i85Iq 18ySO6qiMRi+tIYOQO7nOjS1xm7P48mQZp9AJ4kXN4nSkgDzQPEBzFc+sxv17PHo Cpw= -----END CERTIFICATE-----

Chosen solution

Thank you for the detailed information. The certificate says it was issued by:

lonbp00001_london_proxy Digital Engineering Services Royal Bank of Scotland, London

Is this a new installation of Firefox, or did Firefox performed a Refresh?

In order to trust a business proxy, you can manually import the signing certificate. Firefox can do that if you change this setting temporarily:

(1) In a new tab, type or paste about:config in the address bar and press Enter/Return. Click the button promising to be careful or accepting the risk.

(2) In the search box above the list, type or paste root and pause while the list is filtered

(3) Double-click the security.enterprise_roots.enabled preference to switch the value from false to true

Once Firefox trusts your proxy, I suggest flipping that back to false to keep Firefox isolated from possible fraudulent certificates injected into the Windows certificate store.

Read this answer in context 👍 49

All Replies (2)

jscher2000 - Support Volunteer
jscher2000 - Support Volunteer
  • Top 10 Contributor
more options

Chosen Solution

Thank you for the detailed information. The certificate says it was issued by:

lonbp00001_london_proxy Digital Engineering Services Royal Bank of Scotland, London

Is this a new installation of Firefox, or did Firefox performed a Refresh?

In order to trust a business proxy, you can manually import the signing certificate. Firefox can do that if you change this setting temporarily:

(1) In a new tab, type or paste about:config in the address bar and press Enter/Return. Click the button promising to be careful or accepting the risk.

(2) In the search box above the list, type or paste root and pause while the list is filtered

(3) Double-click the security.enterprise_roots.enabled preference to switch the value from false to true

Once Firefox trusts your proxy, I suggest flipping that back to false to keep Firefox isolated from possible fraudulent certificates injected into the Windows certificate store.

virkies
virkies Question owner
more options

Excellent, that worked like a charm! Thanks a lot.