This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Əgər kömək lazımdırsa lütfən yeni sual verin.

Firefox does not trust this site because it uses a certificate that is not valid for xxxxxxx

  • 4 cavab
  • 1 has this problem
  • 1 view
  • Last reply by Jemand

Jemand
Jemand
more options

Hi,

We have internal website in our corporate with self-signed SSL certificate. And despite the fact that, the host name is listed in the "Subject Alternative Name" list, but the Firefox cannot see it. And the weird thing, that is showing my host name is the warring "he certificate is only valid for the following names: xxx,xxxx,xxxxx,xxxx. Please see the attached screenshot.

Kindly note the following points: 1. The certificate is added to the trusted root in the host machine and client machines. 2. The certificate is not expired yet. 3. The certificate is using strong algorithm (SHA256RSA) 4. We can only repro this issue with Firefox and couldn't repro by IE, Chrome, Opera or Vivaldi. 5. I'm using Windows Server 2016 Datacenter Version 1607 (OS Build 14393.2724) 6. I'm using the latest Firefox version (64.0.2 (64-bit)).

Hi, We have internal website in our corporate with self-signed SSL certificate. And despite the fact that, the host name is listed in the "Subject Alternative Name" list, but the Firefox cannot see it. And the weird thing, that is showing my host name is the warring "he certificate is only valid for the following names: xxx,xxxx,xxxxx,xxxx. Please see the attached screenshot. Kindly note the following points: 1. The certificate is added to the trusted root in the host machine and client machines. 2. The certificate is not expired yet. 3. The certificate is using strong algorithm (SHA256RSA) 4. We can only repro this issue with Firefox and couldn't repro by IE, Chrome, Opera or Vivaldi. 5. I'm using Windows Server 2016 Datacenter Version 1607 (OS Build 14393.2724) 6. I'm using the latest Firefox version (64.0.2 (64-bit)).

All Replies (4)

WestEnd
WestEnd
more options

As to certificate problem each Browser handles them differently and since that is a internal website. This makes it harder since no one is going to be able to get to it or find what certificate it is issuing. So what has the IT department said about this certificate issue?

jscher2000 - Support Volunteer
jscher2000 - Support Volunteer
  • Top 25 Contributor
more options

Hi Jemand, unfortunately your screenshot didn't come through. You could attach it to a new reply:

https://support.mozilla.org/questions/1246704#question-reply

It sounds a bit like "wierd SSL_ERROR_BAD_CERT_DOMAIN on wildcard domain" which we weren't able to solve.

Jemand
Jemand Question owner
more options

Hi,

Thank you very much for your reply. I have attached the screenshot.

Best Regards, Jemand

Jemand
Jemand Question owner
more options

WestEnd said

As to certificate problem each Browser handles them differently and since that is a internal website. This makes it harder since no one is going to be able to get to it or find what certificate it is issuing. So what has the IT department said about this certificate issue?

As I was explaining, it is a self-signed certificate, and I'm the one who created it. It seems a bug in Firefox as it cannot recognize the name of the machine between the list of the alternate subjects as highlighted in the attached screenshot with the previous reply. But, it works fine with domain formats like domainname.com.

Modified by Jemand