This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Mozilla Support में खोजें

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

sec_error_revoked_certificate

  • 1 प्रत्युत्तर दें
  • 15
  • 16 views
  • के द्वारा अंतिम प्रतियुतर Talha

more options

I'm getting an error message when I attempt to go to a website that I have saved in my Bookmarks and use often. The message is 'Secure Connection Failed' 'Peer's certificate has been revoked.' The website is: https://iop.intuit.com/login/login2.jsp. How can I correct this?

I'm getting an error message when I attempt to go to a website that I have saved in my Bookmarks and use often. The message is 'Secure Connection Failed' 'Peer's certificate has been revoked.' The website is: https://iop.intuit.com/login/login2.jsp. How can I correct this?

All Replies (1)

more options

Hello jfisher,


sec_error_revoked_certificate means that the certificate has been revoked.

Your certificate may be issued by a CA trusted by your browser and valid in time, but the CA may have revoked it, and your client is checking for revocation (which is recommended).

Certificate revocation is a mechanism that makes it possible to invalidate a certificate before its normal expiry time. Checking for revocation can be done via CRL or OCSP by the clients.

Typically, certificates are revoked upon request from the entity corresponding to that cert (i.e. the user or the server admin) if the private key has been compromised, if the CA decides the validating data wasn't sufficient after all, or perhaps automatically if the CA issues another certificate to the same entity.

A possible cause for the problem could be that you might have re-keyed your certificate, thereby making your CA revoke the old one. If you're still using the old one inadvertently (perhaps it's still available to your server in its keystore or equivalent) this error could happen.

Qualys SSL Lab's SSL checker ( go to this site and check ) or this is generally a more complete tool for checking your SSL/TLS configuration. It seems to indicate that your certificate has indeed been revoked.

In the result of the checker mentioned above you will see the site is insecure and you should not visit it. If you still want to visit it, you can follow the following steps:

You can uncheck "Use the OCSP to confirm the current validity" That should allow to access the site.

Make sure that you undo the change after you are done with the site and tick the box to check the certificates online.

You can contact the website and inform them about this issue.

   http://kb.mozillazine.org/OCSP_error_when_accessing_secure_sites 

Hope it helps.