X
Nhấn vào đây để đến phiên bản di động của trang web.

Diễn đàn trợ giúp

firefox reports "the certificate is not trusted because the issuer certificate is unknown". SSL cert if from RapidSSL (SHA256), IE doesn't bring up any errors?

Được đăng

Hi all, I'm using Firefox 39.0. When I try to connect to our web site, (which has a RapidSSL certificate installed) it shows the errors;

 "the certificate is not trusted because the issuer certificate is unknown"
 "the server might not be sending the appropriate intermediate certificates"
 "An additional root certificate may need to be imported"

If I look at the certificate chain I get the information below; Under the issued by, I have

 RapidSSL SHA256 CA - G3
 GeoTrust Inc.
 <Not Part Of Certificate>

When I go to the site with IE, there is no security warning. Any help with this is greatly appreciated.

Hi all, I'm using Firefox 39.0. When I try to connect to our web site, (which has a RapidSSL certificate installed) it shows the errors; "the certificate is not trusted because the issuer certificate is unknown" "the server might not be sending the appropriate intermediate certificates" "An additional root certificate may need to be imported" If I look at the certificate chain I get the information below; Under the issued by, I have RapidSSL SHA256 CA - G3 GeoTrust Inc. <Not Part Of Certificate> When I go to the site with IE, there is no security warning. Any help with this is greatly appreciated.

Chi tiết hệ thống bổ sung

Phần bổ trợ đã cài đặt

  • ActiveTouch General Plugin Container Version 105
  • Adobe PDF Plug-In For Firefox and Netscape 10.1.15
  • Creative Cloud Desktop Plugin.v_2_0_0_0
  • Citrix Online App Detector Plugin
  • NPRuntime Script Plug-in Library for Java(TM) Deploy
  • Next Generation Java Plug-in 11.51.2 for Mozilla browsers
  • Office Authorization plug-in for NPAPI browsers
  • The plug-in allows you to open and edit files using Microsoft Office applications
  • The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
  • Shockwave Flash 18.0 r0
  • VLC media player Web Plugin
  • The VMware Client Support Plug-in
  • VMware Remote Console Plug-in
  • VMware Remote Console and Client Integration Plug-in
  • Winamp Application Detector
  • Novell ZENworks Remote Management Viewer and Listener Launcher

Ứng dụng

  • Chuỗi đại diện người dùng: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:39.0) Gecko/20100101 Firefox/39.0

Thông tin chi tiết

jscher2000
  • Top 10 Contributor
8758 giải pháp 71658 câu trả lời
Được đăng

Could you check that the server is sending a complete certificate hierarchy with this test page:

https://www.ssllabs.com/ssltest/

And/or, if you want to post an address to the problem site, we could take a look at how our Firefoxes handle it.

Could you check that the server is sending a complete certificate hierarchy with this test page: https://www.ssllabs.com/ssltest/ And/or, if you want to post an address to the problem site, we could take a look at how our Firefoxes handle it.

Người tạo câu hỏi

Hi jscher2000, thanks for your reply. I have previously run the test from the test site and it has reported certificate chain issues. However I'm not sure what to do about it. If you wouldn't mind checking the server address is filr.ccaa.com.au. If possible please let me know how to resolve the issue. Thanks again.

Hi jscher2000, thanks for your reply. I have previously run the test from the test site and it has reported certificate chain issues. However I'm not sure what to do about it. If you wouldn't mind checking the server address is filr.ccaa.com.au. If possible please let me know how to resolve the issue. Thanks again.
jscher2000
  • Top 10 Contributor
8758 giải pháp 71658 câu trả lời
Được đăng

If you have access to the web server, you need to install an intermediate certificate file. More info:

https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=AR1548

This server identifies itself as "Apache-Coyote/1.1", which is not familiar to me, but probably uses a directory structure similar to other Apache-based servers where the intermediate cert file goes into the same directory as your site certificate.

If you have access to the web server, you need to install an intermediate certificate file. More info: https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=AR1548 This server identifies itself as "Apache-Coyote/1.1", which is not familiar to me, but probably uses a directory structure similar to other Apache-based servers where the intermediate cert file goes into the same directory as your site certificate.