This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Cuireadh an snáithe seo sa chartlann. Cuir ceist nua má tá cabhair uait.

Connection problem to https sites

more options

From today for all sites with https connection i got message on all page from google.

Also It's not possible add this message as exception

www.google.com uses an invalid security certificate.

The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported.

(Error code: sec_error_unknown_issuer)


On another site with https, if add exceprtion in console I saw exception

This site makes use of a SHA-1 Certificate; it's recommended you use certificates with signature algorithms that use hash functions stronger than SHA-1.[Learn More]

Also for site with addons

services.addons.mozilla.org uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported. (Error code: sec_error_unknown_issuer).

Now it's not possible use FF.

Yestreday everything was fine.

From today for all sites with https connection i got message on all page from google. Also It's not possible add this message as exception www.google.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported. (Error code: sec_error_unknown_issuer) On another site with https, if add exceprtion in console I saw exception This site makes use of a SHA-1 Certificate; it's recommended you use certificates with signature algorithms that use hash functions stronger than SHA-1.[Learn More] Also for site with addons services.addons.mozilla.org uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported. (Error code: sec_error_unknown_issuer). Now it's not possible use FF. Yestreday everything was fine.
Attached screenshots

Athraithe ag LSDx ar

Réiteach roghnaithe

Sorry to hear about this hassle.

This often affects users who have security software that filters secure connections, such as Avast, BitDefender, ESET or Kaspersky. These products need to present "fake" certificates to Firefox in order to intercept and decrypt your browsing. If you either (1) update to a new major version of that product, or (2) use Firefox's reset/refresh feature, then Firefox may no longer trust your security software to generate those fake certificates, and you need to set Firefox up to work with it again.

But another cause can be malware that hitched a ride with some software you installed recently.

To try to track down the cause, on the error page, please expand the third section ("I understand the risks") and click the Add Exception button. We're not going to actually save an exception yet, but this opens a dialog with a button to view the certificate so you can check on "who" or "what" signed the untrusted certificate. You can cancel out of the Add Exception dialog.

For comparison, I am attaching a screen shot where I've boxed the "Issued by" and "Certificate Hierarchy" information for this site. What does yours show?

Read this answer in context 👍 4

All Replies (7)

more options

Réiteach Roghnaithe

Sorry to hear about this hassle.

This often affects users who have security software that filters secure connections, such as Avast, BitDefender, ESET or Kaspersky. These products need to present "fake" certificates to Firefox in order to intercept and decrypt your browsing. If you either (1) update to a new major version of that product, or (2) use Firefox's reset/refresh feature, then Firefox may no longer trust your security software to generate those fake certificates, and you need to set Firefox up to work with it again.

But another cause can be malware that hitched a ride with some software you installed recently.

To try to track down the cause, on the error page, please expand the third section ("I understand the risks") and click the Add Exception button. We're not going to actually save an exception yet, but this opens a dialog with a button to view the certificate so you can check on "who" or "what" signed the untrusted certificate. You can cancel out of the Add Exception dialog.

For comparison, I am attaching a screen shot where I've boxed the "Issued by" and "Certificate Hierarchy" information for this site. What does yours show?

Athraithe ag jscher2000 - Support Volunteer ar

more options

jscher2000

Thx.

It's another software replaced certificate in firefox. I used it more than 5 year and everything was fine.

more options

Is it a common program others might be using? If so, could you mention the name? That will help this thread come up in Google searches for the same issue. Thanks.

more options

Had this problem... the fix was my date was off.

www.facebook.com uses an invalid security certificate.

(Error code: sec_error_expired_certificate)

Athraithe ag KBConcepts ar

more options

Hi KBConcepts, you should never need to make exceptions for mainstream sites, particularly high-traffic sites that know how to manage SSL certificates.

Is Facebook the only site that has given you this error?

You said you don't use security software on your Mac. Another common reason for certificate errors on multiple sites is an error in your system's date, time, or time zone, which throws off certificate validity checks. Sometimes allowing computers to use an internet-based time source can introduce this problem. Could you double-check that?

more options

hello in my win 7 ultimate x64 I have problem with firefox.

I can't open any site start with Https ....

pliz heeeeeeeeeeelp me :(((((

more options

Hi 5mohsen5, since you use Kaspersky, please see the replies to your question here: https://support.mozilla.org/questions/1105976