Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

SSL connection to google.com giving sec_error_unknown_issuer

  • 2 cavab
  • 54 have this problem
  • 5 views
  • Last reply by robbiem44

more options

When I try to hit google.com, I get the "Your connection is not secure," then under Advanced, get this:

www.google.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported. (Error code: sec_error_unknown_issuer)

The certificate itself is issued by Websense Inc.

I have tried removing the cert8.db file, I've tried adding an exception. Nothing working.

Thanks

When I try to hit google.com, I get the "Your connection is not secure," then under Advanced, get this: www.google.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported. (Error code: sec_error_unknown_issuer) The certificate itself is issued by Websense Inc. I have tried removing the cert8.db file, I've tried adding an exception. Nothing working. Thanks

Chosen solution

Got it. Basically, I had to export the signing certificate from Chrome (where it was working) and import from within Firefox, and I'm back in business.

Thanks.

Read this answer in context 👍 7

All Replies (2)

more options

If you have the option to set Websense not to intercept/filter secure connections, you could try that. It may depend on whether it's a personal Websense product or a company/enterprise product.

To make Firefox compatible with Websense filtering -- if tests with other secure sites confirm the same issuer and you trust this software -- you probably need to import the software's or proxy's signing certificate into Firefox's Certificate Manager on the Authorities tab. This thread has an example of how you could do that:

https://support.mozilla.org/questions/1089816

more options

Seçilmiş Həll

Got it. Basically, I had to export the signing certificate from Chrome (where it was working) and import from within Firefox, and I'm back in business.

Thanks.