How do I install a certificate?
A web site that I use consistently (https://bbc.co.uk) has a certificate that isn't recognised by Firefox. I found this out when installing FF on a new machine. No idea why.
But there's no way I can find in the Options of installing it. The question was asked some time ago but the solution is no longer valid. Please help ASAP!
Note - the new machine isn't the one I@m sending this message from, so the plugins aren't valid.
All Replies (7)
You can check if there is more detail available about the issuer of the certificate.
- click the "Advanced" button show more details
- click the blue error text (SEC_ERROR_UNKNOWN_ISSUER) to show the certificate chain
- click "Copy text to clipboard" and paste the base64 certificate chain text in a reply
If clicking the blue error text doesn't provide the certificate chain then try these steps to inspect the certificate.
- open the Servers tab in the Certificate Manager
- Options/Preferences -> Privacy & Security
Certificates: View Certificates -> Servers: "Add Exception"
- Options/Preferences -> Privacy & Security
- paste the URL of the website (https://xxx.xxx) in it's Location field
Let Firefox retrieve the certificate -> "Get Certificate"
- click the "View" button and inspect the certificate
You can find detail like the issuer of the certificate and intermediate certificates in the Details tab.
I have the details of the certificate, but that's not what I asked. What I asked was: if I'm satisfied that the certificate is genuine, how do I install it so I don't get the prompt each time I visit the site - which is many times daily?
I have been facing some problems regarding some chrome issue while using from android. The issue was arising primarily from installing certificate after the last update of chrome. Then I solved my problem by following https://www.facebook.com/ page. And also some good tricks about how to install the certificate.
Thanks @roberjson - but you didn't say which of the zillions of Facebook pages I should look at! Can you please be a bit more specific?
There shouldn't be any need to install a certificate for a website like Facebook, so if there are certificate problems then there is either other (security or proxy software involved that intercepts the connection and send a certificate that isn't trusted by Firefox. It is also possible that you have a corrupted intermediate certificate cached. The only way to check what is wrong is for you to provide the full certificate chain as shown in the details on the error page like I posted above.
"The only way to check what is wrong is for you to provide the full certificate chain as shown in the details on the error page like I posted above."
cor-el, I think you must have a different version of Firefox from myself (68.0.2 64-Bit). There's no "advanced" button on the secure connection page. there's a "more information" from which I can tunnel down to "view certificate" and then a "details" tab from which I can export the certificate as a .crt file. But then what?
This is frustrating as I'm working on a new machine. I'm sure that older versions of FF allowed you to simply accept the offending certificate. I can see why it shouldn't be made easy - too easy just to click on an "accept" button and allow rogue sites to be accepted. But it shouldn't be impossible IMO.
The OS is Windows 10 Pro, by the way, is case it makes a difference.
The problem might lie with my Kaspersky anti-malware, but I can't see how. I'll try their site as well.
Modified