This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Too many security certificates, how do I delete?

  • 7 replies
  • 2 have this problem
  • 47 views
  • Last reply by Darpa411

more options

Over the years working for different companies, I have added specific security certificates. Aside from completely deleting all traces of FireFox is there a way I can just remove security certificates and start over?

I would like to keep my bookmarks and some addons. I do not remember which security certs I needed and which I did not.

Can I just delete them all and they will request to be added as needed? Do I uninstall and reinstall?

TY!

Over the years working for different companies, I have added specific security certificates. Aside from completely deleting all traces of FireFox is there a way I can just remove security certificates and start over? I would like to keep my bookmarks and some addons. I do not remember which security certs I needed and which I did not. Can I just delete them all and they will request to be added as needed? Do I uninstall and reinstall? TY!

Chosen solution

There is usually no need to add exceptions for certificates unless you visit website the do not send all intermediate certificates or otherwise aren't providing a chain that build up to a root certificate.

Always check out why the site is untrusted (see the Technical details) and if this is caused by a missing intermediate certificate then see if you can install this intermediate certificate from another source.

Some firewalls monitor secure (https) connections and send their own certificate instead of the website's certificate.

You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates.

  • Click the link at the bottom of the error page: "I Understand the Risks"

Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate".

  • Click the "View..." button and inspect the certificate and check who is the issuer.

You can see more Details like intermediate certificates that are used in the Details pane.

Read this answer in context 👍 1

All Replies (7)

more options
more options

You can rename the cert8.db file in the Firefox profile folder to cert8.db.old or delete the cert8.db file to remove intermediate certificates that Firefox has stored.

You can use this button to go to the Firefox profile folder:

  • Help > Troubleshooting Information > Profile Directory: Show Folder
more options

Cor-el? or iamjayakumars or anyone?

So, if I just delete all the certificates...... No harm will come as I go to google or sites which require certificates, I will be prompted then can re-add them at my own risk or as needed?

In advance TYVM!

more options

I do not remember which domains I added on my own. there are about 10-15 I no longer deal with and I just want them all off. so, if I delete this DB file or folloe IAMhayakumars advice.... I can start over again with no harm right?

more options

Chosen Solution

There is usually no need to add exceptions for certificates unless you visit website the do not send all intermediate certificates or otherwise aren't providing a chain that build up to a root certificate.

Always check out why the site is untrusted (see the Technical details) and if this is caused by a missing intermediate certificate then see if you can install this intermediate certificate from another source.

Some firewalls monitor secure (https) connections and send their own certificate instead of the website's certificate.

You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates.

  • Click the link at the bottom of the error page: "I Understand the Risks"

Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate".

  • Click the "View..." button and inspect the certificate and check who is the issuer.

You can see more Details like intermediate certificates that are used in the Details pane.

more options

Ha! Understand! TY TY!

more options

This helped solve my problem too. Wish I could choose both for "solutions".