This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Firefox 3.6.13 can not load "PayPal" 443 uses an invalid security certificate. Error code:sec_error_untrusted_issuer

  • 3 replies
  • 37 have this problem
  • 3 views
  • Last reply by super_b

more options

It seems to only fail on PayPal and Ebay secure sites. I've toggled all sorts of security options. Will load under IE.

It seems to only fail on PayPal and Ebay secure sites. I've toggled all sorts of security options. Will load under IE.

All Replies (3)

more options

You can try to remove the VeriSign intermediate certificates in Certificate Manager.

  • Tools > Options > Advanced > Encryption: Certificates > View Certificates : Authorities

The stored intermediate certificates as "Software Security device" and the build-in root certificates show as "Builtin Object Token". Don't remove the latter.


You can rename (or delete) the file cert8.db (cert8.db.old) in the Profile Folder to remove all intermediate certificates that Firefox has stored by visiting secure websites.

more options

The remove "Software Security device" files did not help. BUT, the changing of the file name cert8.db (cert8.db.old) did the trick.

Thanks alot, !!!

DJ

Wilmington, NC

more options

I had this problem at work for *all* secure sites, not just PayPal, but oddly IE7 worked just fine. As it turns out, my company uses an internal certificate authority, and its certificate had been pushed to IE using group policy. However, Firefox did not have the certificate, so any secure sites that are re-signed by the internal CA were blocked, because Firefox didn't trust the internal CA. Exporting the certificate from IE and importing in Firefox did the trick. Using the "migrate settings from IE" during install might also work, although I didn't try that.