This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Untrusted Connection Warnings for One Domain User

  • 4 replies
  • 3 have this problem
  • 1 view
  • Last reply by cor-el

more options

I have one domain user that constantly gets "This connection is Untrusted" warnings and has to continually add the exemptions. On a couple of sites the adding of exemptions fail and then get the following under the technical details: "xxxxx uses an invalid security certificate. This certificate is not trusted because no issuer chain was provided. (Error code sec_error_unknown_issuer)" and is unable to go into that site. It only happens to the one domain user and other domain users do not have the same issue of constantly getting the warnings and having to add exemptions and are able to get into the same sites that the exemptions failed on for the affected user. The affected user can go to another computer on the network and not have any issues with the warnings and able to go to any of site. It appears to be the one computer with the affected user's profile. I've tried uninstalling and reinstalling Firefox, including deleting the Mozilla folder under the user's profile application data to no avail. Any ideas for a solution to this issue?

I have one domain user that constantly gets "This connection is Untrusted" warnings and has to continually add the exemptions. On a couple of sites the adding of exemptions fail and then get the following under the technical details: "xxxxx uses an invalid security certificate. This certificate is not trusted because no issuer chain was provided. (Error code sec_error_unknown_issuer)" and is unable to go into that site. It only happens to the one domain user and other domain users do not have the same issue of constantly getting the warnings and having to add exemptions and are able to get into the same sites that the exemptions failed on for the affected user. The affected user can go to another computer on the network and not have any issues with the warnings and able to go to any of site. It appears to be the one computer with the affected user's profile. I've tried uninstalling and reinstalling Firefox, including deleting the Mozilla folder under the user's profile application data to no avail. Any ideas for a solution to this issue?

All Replies (4)

more options

Hi,

 I had this problem, temporarily, on a website I visit often! But after a day it was resolved. Makes me think firefox/verisign had a temporary problem communicating with each other.
more options

I have been dealing with this issue for several weeks. It all started with a new computer with Windows 7 Professional 32bit. That computer ended up being replace under warranty with the same model computer. But the user can go to any other computer on the network and not have any issues. I would have thought it was going to be in the user's profile but I removed the mozilla folder at both the machine and server levels. I've also deleted the registry entries after uninstalling firefox early on but unless I am missing some that I am not seeing that also did not work. I just tried uninstalling firefox again and installing 28.0 instead of that latest version. Still no luck. I'm at a loss for solving this at this point.

more options

This Connection is Untrusted is sometimes caused because the computer system clock is wrong. Check the time / date / time zone settings.

more options

This can also be a problem with the cert8.db file.

Check out why the site is untrusted and click "Technical Details to expand this section.
If the certificate is not trusted because no issuer chain was provided (sec_error_unknown_issuer) then see if you can install this intermediate certificate from another source.

You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates.

  • Click the link at the bottom of the error page: "I Understand the Risks"

Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate".

  • Click the "View..." button and inspect the certificate and check who is the issuer of the certificate.

You can see more Details like intermediate certificates that are used in the Details pane.

If "I Understand the Risks" is missing then this page may be opened in an (i)frame and in that case try the right-click context menu and use "This Frame: Open Frame in New Tab".

  • Note that some firewalls monitor (secure) connections and that programs like Sendori or FiddlerRoot can intercept connections and send their own certificate instead of the website's certificate.
  • Note that it is not recommended to add a permanent exception in cases like this, so only use it to inspect the certificate.