Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

I am getting "Connection is Untrusted" on good sites all the time now. Why???

  • 11 cavab
  • 59 have this problem
  • 65 views
  • Last reply by cor-el

more options

All of a sudden today I am have almost all of the sites I visit coming up as "Connection is Untrusted" messages. Why? To the best of my knowledge, nothing has changed. All was fine last evening and today all I get is this error on site after site after site.

All of a sudden today I am have almost all of the sites I visit coming up as "Connection is Untrusted" messages. Why? To the best of my knowledge, nothing has changed. All was fine last evening and today all I get is this error on site after site after site.

All Replies (11)

more options

check the time and date of your system

more options

The time and date on my system are within a few seconds of my atomic clock here in my "computer room". What would that have to do with it anyway <confused look on my face>?

more options

If the date and time on the computer are wrong then security certificates may not be valid (either expired or not yet valid).

Does it specify under technical information what the cause of that message is?


Some firewalls monitor secure (https) connections and send their own certificate instead of the website's certificate.

You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates.

  • Click the link at the bottom of the error page: "I Understand the Risks"

Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate".

  • Click the "View..." button and inspect the certificate and check who is the issuer.

You can see more Details like intermediate certificates that are used in the Details pane.

Modified by cor-el

more options

The really strange part of this is that it did not start occuring until the upgrade to version 11.0. I have tried using Interent Exploder 9 and I don';t have this problem at all. Plus, just for grins and giggles, I downloaded a browser called Lunascape6 and that works fine also. It is just Firefox 11.0 that is giving me the problem.  :-(

more options

Did you check the details to see what might be causing that error?

more options

I am not sure if this is what you are looking for, but here goes:

This Connection is Untrusted

         You have asked Firefox to connect securely to cibng.ibanking-services.com, but we can't confirm that your connection is secure.
         Normally, when you try to connect securely, sites will present trusted identification to prove that you are going to the right place. However, this site's identity can't be verified.
       
           Technical Details
         cibng.ibanking-services.com uses an invalid security certificate. The certificate is not trusted because no issuer chain was provided.

(Error code: sec_error_unknown_issuer)

Then there is also the following:

https://cibng.ibanking-services.com/cib/CEBMainServlet/TrustedSignon?FIORG=xxx&FIFID=xxxxxxxxx

Is this of any help? All these places are places we have been using for years, like the bank, credit card companies, and others. We are very frustrated

Modified by Tom

more options

I have the same problem. "This Connection is Untrusted". It is not the time/date. When I try to log onto Gmail, I get the error (and sometimes when going to support.mozilla.org pages - shouldn't this be on some sort of automatic white list - DUH). When I click on "I Understand the Risks" and "Add Exception", then "Confirm Security Exception" (with "Permanently store this exception" checked) it goes back to the "Add Exception" option screen. A permanent loop, well at least now. It was just going to an error screen with no "I Understand the Risks" option. If I select "Get Certificate" then "View..." I am presented with an apparently valid certificate, validated by ESET:

Common Name: ESET SSL Filter CA

Organization: ESET, spol. s r.o.

and valid from 7/20/2011 until 7/18/2013. My clock reads 6/10/2012, and is set for the correct time zone.

Mail.google.com is one of my registered exceptions under Options>Advanced>Encryption>Servers>View Certificates

The "skip cert error' extension does not work.

The single most relevant thread in the forums is closed and says to start a new thread, but I can't do that. When I try to add a new question, I just get sent back to the closed thread.

I'm at a dead end. Everything I try to do in support either ends up in the error, or back to that thread, or in some other useless loop I am unable to get out of to anything useful.

I have come to the conclusion Firefox help is essentially useless whenever there is a problem with Firefox and not a setting error, user error (or something overlooked) of some sort.

If anyone comes up with a solution, I'd sure like to know:
Email removed by moderator to protect from spam

Modified by NoahSUMO

more options

See:

  • ESET: setup -> advanced setup -> extend web and email tree -> SSL
  • SSL protocol: Do not scan SSL protocol
more options

ok, other eset users have reported the same issue - disable ssl scanning as it is descirbed here: https://support.mozilla.org/de/questions/790114#answer-339989

more options

cor-el's solution seems to have worked. I have used ESET "forever". Why would this start now? And why would scanning it's own valid certificate cause a problem? I'll bring that up with ESET.

Thank you so much . . .

more options

ESET want to scan secure HTTPS connection and to be able to do that you will get two connections. ESET makes its own connection to the website and makes another secure connection to Firefox using its own certificate.
So Firefox doesn't see the website's certificate, but sees the ESET certificate instead and that certificate is considered untrusted because there is no root certificate installed in Firefox.