본 사이트는 여러분의 사용자 경험을 개선하기 위해 유지 보수를 진행하는 동안 기능이 제한됩니다. 도움말로 문제가 해결되지 않고 질문을 하고 싶다면 Twitter의 @FirefoxSupport 및 Reddit의 /r/firefox 채널을 활용하세요.

Mozilla 도움말 검색

고객 지원 사기를 피하세요. 저희는 여러분께 절대로 전화를 걸거나 문자를 보내거나 개인 정보를 공유하도록 요청하지 않습니다. "악용 사례 신고"옵션을 사용하여 의심스러운 활동을 신고해 주세요.

자세히 살펴보기

Firefox isn't trusting a replaced user certificate.

  • 4 답장
  • 1 이 문제를 만남
  • 7 보기
  • 최종 답변자: dkeeler

more options

I access one TLS URL that's secured by user certificate. I had no problem importing the .p12 certificate into my profile's user certificate store ("Your Certificates"), and I could access the URL.

On the TLS URL system, for an unrelated reason, I had to generate a new certificate. My task was to remove the user certificate from my profile's certificate store, and replace with the new certificate.

The replacement was perfect: Delete the old certificate, import the new certificate. Enter the cert password, and see the new certificate, with its new serial ID listed in Firefox's certificate store.

When I try to visit the TLS secured URL, Firefox gives "Secure Connection Failed" and "SEC_ERROR_BAD_SIGNATURE". It says "Peer has an invalid signature."

I'm at a loss how to proceed troubleshooting this.

I access one TLS URL that's secured by user certificate. I had no problem importing the .p12 certificate into my profile's user certificate store ("Your Certificates"), and I could access the URL. On the TLS URL system, for an unrelated reason, I had to generate a new certificate. My task was to remove the user certificate from my profile's certificate store, and replace with the new certificate. The replacement was perfect: Delete the old certificate, import the new certificate. Enter the cert password, and see the new certificate, with its new serial ID listed in Firefox's certificate store. When I try to visit the TLS secured URL, Firefox gives "Secure Connection Failed" and "SEC_ERROR_BAD_SIGNATURE". It says "Peer has an invalid signature." I'm at a loss how to proceed troubleshooting this.

모든 댓글 (4)

more options

I have not found a solution for this issue. Any help is appreciated.

more options

Does it work if you rename/remove cert9.db (and cert8.db when present) in the profile folder ?

hYou can use the button on the "Help -> Troubleshooting Information" (about:support) page to go to the current Firefox profile folder or use the about:profiles page.

글쓴이 cor-el 수정일시

more options

Thank you for your response.

I renamed the cert9.db to cert9.db.old. No cert8.db file was present in the profile directory.

I restarted Firefox completely. No effect. I am still unable to connect to the URL. The error is different: PR_END_OF_FILE_ERROR

글쓴이 NDeMarco 수정일시

more options

Did you re-import your client certificate after renaming cert9.db?