Compare Revisions

If a website requires a secure connection that cannot be established, Firefox will not connect and will show you an error page. Learn more.

When a website that requires a secure ([https://wikipedia.org/wiki/HTTPS HTTPS]) connection tries to communicate with your computer, Firefox cross-checks this attempt to make sure that the [[Secure website certificate|website certificate]] and the connection method are actually secure. If Firefox cannot establish a secure connection it will display an error message, which usually means * Firefox can’t verify the site’s security certificate, or * Something on your computer or network is blocking or replacing the secure connection. This article explains why you may see a '''Secure Connection Failed''' page or other connection security error and what you can do about it. __TOC__ = Secure Connection Failed = A ''Secure Connection Failed'' error page will include a description of the error and a {button Try Again} button. There is no option to add a security exception to bypass this type of error. ;[[Image:Fx142SecureConnectionFailed]] The error page will also include the following information: * ''The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.'' * ''Please contact the website owners to inform them of this problem.'' == TLS version unsupported == Some websites try using outdated (no longer secure) [http://wikipedia.org/wiki/Transport_Layer_Security Transport Layer Security] (TLS) mechanisms in an attempt to secure your connection. Firefox protects you by preventing navigation to such sites if there is a problem in securely establishing a connection.<!-- See https://support.mozilla.org/en-US/kb/what-does-your-connection-is-not-secure-mean/discuss/6480#post-13160 --> Contact the owners of the website and ask them to update their TLS version to a version that is still current and secure. The minimum TLS version allowed by default is TLS 1.2. Websites that don't support TLS version 1.2 or higher will display a ''Secure Connection Failed'' error page with a ''SSL_ERROR_UNSUPPORTED_VERSION'' error code and a message that says: ''This website might not support the TLS 1.2 protocol, which is the minimum version supported by Firefox.'' For more information, see [https://hacks.mozilla.org/2020/02/its-the-boot-for-tls-1-0-and-tls-1-1/ this Mozilla blog post] and [https://developer.mozilla.org/docs/Web/Security/Transport_Layer_Security Transport Layer Security (MDN Web Docs)]. = Did Not Connect: Potential Security Issue = Certain secure connection failures will result in a ''Did Not Connect: Potential Security Issue'' error page. ;[[Image:Fx142SecError-DidNotConnect]] The error page will include a description of the potential security threat and an {button Advanced…} button to view the error code and other technical details. There is no option to add a security exception to visit the website. ==HSTS required== Websites may require [https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security#Description HTTP Strict Transport Security] (HSTS) and will not allow access with an insecure connection. = Warning: Potential Security Risk Ahead = Firefox checks a website’s security certificate to ensure the site is legitimate and that your connection is [[How do I tell if my connection to a website is secure?|encrypted]]. If the certificate can’t be validated, Firefox will stop the connection and display a ''Warning: Potential Security Risk Ahead'' page. ;[[Image:Fx142WarningPotentialSecurityRisk]] Click the {button Advanced…} button to view the error code and additional information. Depending on the error, you may be able to bypass the warning and visit the site. To learn more, see [[What do the security warning codes mean?]]. This error can be caused security software products that intercept secure connections by default, which can produce connection errors or warnings on secure websites. For more information, see [[Troubleshoot security error codes on secure websites]]. An incorrect system clock can also cause Firefox to detect that the website's security certificate is expired or invalid. Make sure your computer is set to the correct date, time and time zone. See [[Troubleshoot time-related errors on secure websites]]. == Other possible solutions == *'''Check if the website is down:''' If a website won’t load in Firefox, it might be a problem on the site’s end. *'''Try opening the same site in another browser:''' If it doesn’t load there either, the website is likely experiencing issues. *'''Clear cached certificates in Firefox:''' If Firefox has saved an outdated or untrusted certificate, removing it may fix the error. [[Template:optionspreferences]] Go to the {menu Privacy & Security} panel, go down to the '''Certificates''' section, click {button View Certificates…}, select any untrusted or outdated site certificates and click {button Delete or distrust…}. = Related articles = * [[Certificate contains the same serial number as another certificate]] * [[Websites look wrong or appear differently than they should]] * [[Websites don't load - troubleshoot and fix error messages]]