Funkcionalnosć tutoho sydła so přez wothladowanske dźěła wobmjezuje, kotrež maja waše dožiwjenje polěpšić. Jeli nastawk waš problem njerozrisuje a chceće prašenje stajić, wobroćće so na naše zhromodźenstwo pomocy, kotrež na to čaka, wam na @FirefoxSupport na Twitter a /r/firefox na Reddit pomhać.

Avatar for Username

Pomoc přepytać

Hladajće so wobšudstwa pomocy. Njenamołwimy was ženje, telefonowe čisło zawołać, SMS pósłać abo wosobinske informacije přeradźić. Prošu zdźělće podhladnu aktiwitu z pomocu nastajenja „Znjewužiwanje zdźělić“.

Dalše informacije

Tuta nitka je so archiwowała. Prošu stajće nowe prašenje, jeli pomoc trjebaće.

Certificate Authority missing in Firefox 7.01 from Fedora 16

  • 3 wotmołwy
  • 2 matej tutón problem
  • 6 napohladow
  • Poslednja wotmołwa wot cor-el

mneal3
mneal3
more options

Hi,

On Fedora 16 (with all updates), Firefox 7.0.1, connecting to: https://www4.usbank.com results in an error message "This connection is untrusted" and "The certificate is not trusted because no issuer chain was provided" The CA for the certificate is: VeriSign Class 3 Extended Validation SSL CA which is not in listed under Authorities in Certificate Manager.

On Windows 7 (with all updates), Firefox 8.0, the CA is listed under Authorities in Certificate Manager and there is no error connecting to the usbank site.

Is there a reason Firefox 7.0.1 does not include the above CA? If not, how do I update the CA list?

Thanks, Mike

Hi, On Fedora 16 (with all updates), Firefox 7.0.1, connecting to: https://www4.usbank.com results in an error message "This connection is untrusted" and "The certificate is not trusted because no issuer chain was provided" The CA for the certificate is: VeriSign Class 3 Extended Validation SSL CA which is not in listed under Authorities in Certificate Manager. On Windows 7 (with all updates), Firefox 8.0, the CA is listed under Authorities in Certificate Manager and there is no error connecting to the usbank site. Is there a reason Firefox 7.0.1 does not include the above CA? If not, how do I update the CA list? Thanks, Mike

Wubrane rozrisanje

That is a problem with that server.

A server should send a full certificate chain with all required certificates and this server doesn't send the "VeriSign Class 3 Extended Validation SSL CA" certificate.

You can inspect the certificate chain via a site like this:

Tutu wotmołwu w konteksće čitać 👍 0

Wšě wotmołwy (3)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Wubrane rozrisanje

That is a problem with that server.

A server should send a full certificate chain with all required certificates and this server doesn't send the "VeriSign Class 3 Extended Validation SSL CA" certificate.

You can inspect the certificate chain via a site like this:

mneal3
mneal3 Prašer
more options

Makes sense. Thanks!

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

You're welcome.

You can contact the site and tell them about this omission, so they can correct it.