This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Entrust G2 Root is not in Mozilla CA Certificate List

  • 2 replies
  • 8 have this problem
  • 174 views
  • Last reply by williamburn

more options

We have noticed the Entrust G2 Root Certificates are not located in the Mozilla CA Certificate List. We have contacted Entrust and they confirmed that the certificates have been sent to Google, Microsoft, and Mozilla and there was nothing that they could do to fix the problem.

Are there plans to update the listing with the new SHA2 root certificates? We are having trouble with vulnerability false-positives and trust issues due to Mozilla not having these certificates in their store.

https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/included/

We have noticed the Entrust G2 Root Certificates are not located in the Mozilla CA Certificate List. We have contacted Entrust and they confirmed that the certificates have been sent to Google, Microsoft, and Mozilla and there was nothing that they could do to fix the problem. Are there plans to update the listing with the new SHA2 root certificates? We are having trouble with vulnerability false-positives and trust issues due to Mozilla not having these certificates in their store. https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/included/

Modified by williamburn

Chosen solution

hello, the root CA will have to work with mozilla to get these certificates into the trust store of the browser. this issue seems to be tracked in bug# 849950.

Read this answer in context 👍 0

All Replies (2)

more options

Chosen Solution

hello, the root CA will have to work with mozilla to get these certificates into the trust store of the browser. this issue seems to be tracked in bug# 849950.

more options

Thanks for the quick reply philip. by the way, i think i accidentally clicked the 'not helpful' -- I misread the button.