Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Why did I get a TLS error message with Firefox but was successful when switching to Internet Explorer?

  • 4 replies
  • 35 have this problem
  • 7 views
  • Last reply by cor-el

more options

I was making an online transaction, pressed "go" (or its equivalent) and received TLS connection failed message.

I switched to Internet Explorer and "go" went ok first time.

I was making an online transaction, pressed "go" (or its equivalent) and received TLS connection failed message. I switched to Internet Explorer and "go" went ok first time.

Chosen solution

Firefox recently removed support for some outdated, insecure versions of TLS. You should contact the owners of the website to ask them to upgrade to a newer version. Other browsers also plan to remove support for these versions in the future as well.

Read this answer in context 👍 8

All Replies (4)

more options

Chosen Solution

Firefox recently removed support for some outdated, insecure versions of TLS. You should contact the owners of the website to ask them to upgrade to a newer version. Other browsers also plan to remove support for these versions in the future as well.

more options

The website may try to fallback to TLS 1.0 in a way that is no longer allowed in current releases or may be using a deprecated cipher suite.

You can open the about:config page via the location/address bar and use its search bar to locate this pref:

  • security.tls.insecure_fallback_hosts

You can double-click the line to modify the pref and add the full domain (TEXT) to this pref. If there are already websites (domains) in this list then add a comma and the new domain (no spaces). You should only see domains separated by a comma in the value column.

If this helps then you can contact this website and ask them to look into this.


more options

Thank you both for your replies.

My user name of Thickoff was the nearest I could get to Thicko (sadly already taken) in recognition of my limited IT skills and comprehensive capabilities.

As such I can cope with user293's reply but am somewhat in awe of cor-el's reply!

The website in question is that of one of the UK's largest banks - I wonder if they will take any notice of me when I contact them?!

Thanks again for the replies

more options

The website need to fix this and update their security to support TLS 1.2, so you ill have to contact them by email or phone.