Can't get to SSL sites and no other solutions work. More details inside...
OS: Windows 7 Enterprise FF Version: 44.0.2
I've done the workaround to manually add an exception so I can view the certificate, and have verified that the cause is a program called Zscaler that our company uses to "protect" users from malicious websites. It's creating the certificates that are causing the problems. I have no way of editing or changing any settings in Zscaler, so I don't think I have a way of making it work.
Here's the problem. Chrome and IE11 work fine. I don't want to use them, I want to use Firefox. Is there really no way of disabling this "security" feature for those of us that have a clue what we're doing? It is literally the one reason I've stuck with Chrome, even at home just so I can take advantage of syncing the history.
Thanks in advance.
Chosen solution
You just have to set up Firefox to trust the Zscaler proxy to issue fake certificates for real websites.
Could you try the export/import method from this thread and let me know whether it still works: sec_error_bad_signature only via proxy for https website.
Read this answer in context 👍 1All Replies (6)
Chosen Solution
You just have to set up Firefox to trust the Zscaler proxy to issue fake certificates for real websites.
Could you try the export/import method from this thread and let me know whether it still works: sec_error_bad_signature only via proxy for https website.
jscher2000 said
You just have to set up Firefox to trust the Zscaler proxy to issue fake certificates for real websites. Could you try the export/import method from this thread and let me know whether it still works: sec_error_bad_signature only via proxy for https website.
Thank you so much. I've been searching for a solution to this for awhile now. I must not have been searching properly because I've come across just about every other thread and somehow missed that one. That did it. Thanks again.
jscher2000 said
You just have to set up Firefox to trust the Zscaler proxy to issue fake certificates for real websites. Could you try the export/import method from this thread and let me know whether it still works: sec_error_bad_signature only via proxy for https website.
Sorry to be a pest, but now Firefox Sync won't sign in and simply tells me "you must be connected to the internet to sign in". This has to be related to a similar issue right?
But Sync worked before? Hmm... how is that possible.
When I poke around in the about:config preferences editor, I see numerous host names associated with Sync. Perhaps the proxy blocks one of them:
accounts.firefox.com
services.mozilla.com auth.services.mozilla.com setup.services.mozilla.com token.services.mozilla.com
You can check the about:sync-log page via the location/address bar to see if there are recent error logs available.
Thanks for the help.
I was able to get it to at least let me enter my email and password (sheer luck, no idea why that started working). But it doesn't stay connected. That allows it to generate a log, though. Based on the errors in the logs it appears that it's simply not really logged in or not allowing it to stay logged in - which has to be related to the proxy.
I'm not sure how to whitelist the sync service, if that's even possible...
And why is this type of thing not an issue with Chrome? I would ask the same in IE, but nothing is really syncing there.