This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

How to fix MOZILLA_PKIX_ERROR_MITM_DETECTED when we use SSL Bumping ?

  • 1 reply
  • 1 has this problem
  • 3 views
  • Last reply by cor-el

more options

Hi everyone,

We use a web proxy on my company and SSL Bumping for security reasons. In this case, all of HTTPS flow goes through the web proxy which acts as a certification authority. "Problem", Firefox (v67.x) detect a MITM attack despite the addition of the private CA well explained on the Mozilla FAQ (https://wiki.mozilla.org/CA/AddRootToFirefox). Obviously, it works with all other browsers.

Any ideas who can help ?

Hi everyone, We use a web proxy on my company and SSL Bumping for security reasons. In this case, all of HTTPS flow goes through the web proxy which acts as a certification authority. "Problem", Firefox (v67.x) detect a MITM attack despite the addition of the private CA well explained on the Mozilla FAQ (https://wiki.mozilla.org/CA/AddRootToFirefox). Obviously, it works with all other browsers. Any ideas who can help ?

All Replies (1)

more options

There are related security.pki.mitm prefs available on the about:config page. This pref should tell you the issuer of the certificate.

  • security.pki.mitm_canary_issuer

You can set this pref to true on the about:config page to import root certificate(s) from the Windows certificate store.

  • security.enterprise_roots.enabled = true

See also: