It throws the SEC_ERROR_UNKNOWN_ISSUER error. I have found that site works perfectly fine in IE and Chrome but it throws certificate error while browsing it thru Mozilla.
After some trial-and-error, I found what I needed was: $ cat NetworkSolutionsDVServerCA.crt > my earlier post I provided the step by step instructions to host a website in Apache web server and securing it thru HTTPS. There was no bundle file, but it's possible to create one from the other certificates.
In my case, I had gotten three files from Network Solutions -, AddTrustExternalCARoot.crt, and NetworkSolutionsDVServerCA.crt. The serverĬertificate must appear before the chained certificates in the Should be concatenated to the signed server certificate. In thisĬase the authority provides a bundle of chained certificates which Present in the certificate base of well-known trusted certificateĪuthorities which is distributed with a particular browser. The server certificate using an intermediate certificate that is not This occurs because the issuing authority has signed Some browsers may complain about a certificate signed by a well-knownĬertificate authority, while other browsers may accept the certificate This is also a way to test when it's working, in the shell, without running Firefox. Assuming you have shell access, you can do the command ( q or CTRL-C to disconnect): openssl s_client -connect :443Īnd you will probably see the error "unable to get local issuer certificate". Second, I used OpenSSL for testing/debugging. It told me that the chain was incomplete. The first step in finding the solution was using Qualys (as per this other answer). Note that I have root/shell access to my VPS, I don't know if you do (at least this might point your providers in the right direction). I had the same problem - bought a basic SSL certificate (from Network Solutions), installed it under nginx, and it worked fine in both Opera and IE - but not Firefox 3.6.12.
0 kommentar(er)
