Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Lolu chungechunge lwabekwa kunqolobane. Uyacelwa ubuze umbuzo omusha uma udinga usizo.

Secure Connection Failed

  • 7 uphendule
  • 147 zinale nkinga
  • 38430 views
  • Igcine ukuphendulwa ngu Lincky Lin

more options

today I receive this error message when I visit live mail.live.com the same thing received from all of other PC using Mozilla Firefox, one of my friend aboarding getting the same when I happened to see, it appears Mozilla lost the CA check with OSCP,

there is no additional option to bypass access.

I believe this is the service incident from Mozilla party, please help investigate it,

you may use your latest Mozilla and visit https://mail.live.com and see what's the result and you will get to know the cause.

it's quite urgent and impact worldwide


Secure Connection Failed

An error occurred during a connection to mail.live.com. Invalid OCSP signing certificate in OCSP response. Error code: SEC_ERROR_OCSP_INVALID_SIGNING_CERT

   The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
   Please contact the website owners to inform them of this problem.

Isisombululo esikhethiwe

Hi   !

There seems to be something wrong on some Microsoft servers if you see this SEC_ERROR_OCSP_INVALID_SIGNING_CERT error message. Hopefully they fix this quickly on affected servers.

This looks like a problem with OCSP Stapling on the server because it works when OCSP Stapling is disabled in Firefox.

https://en.wikipedia.org/wiki/OCSP_Stapling https://blog.mozilla.org/security/2013/07/29/ocsp-stapling-in-firefox/

You can temporarily disable OCSP Stapling :

Type in the address bar   about:config   (press Enter) (promise to be careful, if asked) Type and look for the preference : security.ssl.enable_ocsp_stapling and set it's value to   false

It is best to reset this pref via the right-click context menu to   true  once you are done with this website.

Funda le mpendulo ngokuhambisana nalesi sihloko 👍 21

All Replies (7)

more options

Isisombululo Esikhethiwe

Hi   !

There seems to be something wrong on some Microsoft servers if you see this SEC_ERROR_OCSP_INVALID_SIGNING_CERT error message. Hopefully they fix this quickly on affected servers.

This looks like a problem with OCSP Stapling on the server because it works when OCSP Stapling is disabled in Firefox.

https://en.wikipedia.org/wiki/OCSP_Stapling https://blog.mozilla.org/security/2013/07/29/ocsp-stapling-in-firefox/

You can temporarily disable OCSP Stapling :

Type in the address bar   about:config   (press Enter) (promise to be careful, if asked) Type and look for the preference : security.ssl.enable_ocsp_stapling and set it's value to   false

It is best to reset this pref via the right-click context menu to   true  once you are done with this website.

more options

noted, thanks for your help

more options

Hi I have found a workaround with out change in about:config After you get the error, try to access via www.outlook.com I agree that it could be server issue but IE and Chrome are not presenting the same error

more options

Hi Again, Issue was reported to Microsoft that are working on resolving the issue Please use the link to follow progress

https://portal.office.com/servicestatus

Okulungisiwe ngu Ofer

more options

Ofer said

Hi Again, Issue was reported to Microsoft that are working on resolving the issue Please use the link to follow progress https://portal.office.com/servicestatus

Thank you sooo much   !!!

Okulungisiwe ngu Happy112

more options

Ofer said

I agree that it could be server issue but IE and Chrome are not presenting the same error

The problem lies with Microsoft, whose servers   (in layman's terms)   send an expired assurance that their SSL certificate is still valid. Unfortunately it turns out that Firefox is the only browser checking for this on each secure https site it is loading. (whereas other browsers glance over that and only check for  : https://en.wikipedia.org/wiki/Extended_Validation_Certificate).

more options

ha, looks like only Mozilla that complies with the standard, this should be good to sign of any potential risk.

after that in the other day, I received the internal message from MSIT about the news. :)