We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

לאתר זה תהיה פונקציונליות מוגבלת בזמן שאנו מתחזקים אותו לשיפור החוויה שלך. אם מאמר מסויים לא פותר את הבעיה שלך וברצונך לשאול שאלה, קהילת התמיכה שלנו מחכה לעזור לך ב־Twitter תחת ‎@FirefoxSupport וב־Reddit תחת ‎/r/firefox.

חיפוש בתמיכה

יש להימנע מהונאות תמיכה. לעולם לא נבקש ממך להתקשר או לשלוח הודעת טקסט למספר טלפון או לשתף מידע אישי. נא לדווח על כל פעילות חשודה באמצעות באפשרות ״דיווח על שימוש לרעה״.

מידע נוסף

Cannot use our self signed client certificates

  • 2 תגובות
  • 1 has this problem
  • 1 view
  • תגובה אחרונה מאת Fabien H. Dumay

more options

In order to monitor our application at client sites, we have added a monitoring page (using apache). To prevent preying eyes, we require clients to identify them selves using a client certificate. This used to work until a few weeks ago, but now we are having problems using firefox. It keeps stating a SSL_ERROR_HANDSHAKE_FAILURE_ALERT error, and we cannot accessing the pages.

I have already added our Root CA and intermediate CA (used to sign the client certs) in both firefox and the windows certificate store, But the problem is not yet resolved.

The subdomain is protected with a an Organization Validated certficate from an official CA authority. Apparently we are missing something, but i can't see what is causing this issue.

If i disable the requirement for a client certificate, the site is accessible, but that is not really an option here.

In order to monitor our application at client sites, we have added a monitoring page (using apache). To prevent preying eyes, we require clients to identify them selves using a client certificate. This used to work until a few weeks ago, but now we are having problems using firefox. It keeps stating a SSL_ERROR_HANDSHAKE_FAILURE_ALERT error, and we cannot accessing the pages. I have already added our Root CA and intermediate CA (used to sign the client certs) in both firefox and the windows certificate store, But the problem is not yet resolved. The subdomain is protected with a an Organization Validated certficate from an official CA authority. Apparently we are missing something, but i can't see what is causing this issue. If i disable the requirement for a client certificate, the site is accessible, but that is not really an option here.

כל התגובות (2)

more options

Hi Fabien:

Do you follow the instructions in the followin article to enable Windows certificate store?

Please let us know.

Cheers! ...Roland

more options

Hi Roland,

Thanks for responding to my query. I have tried that solution (both 'on' and 'off') but that did not change the outcome.

Regards,

Fabien H. Dumay