为提升您的使用体验,本站正在维护,部分功能暂时无法使用。如果本站文章无法解决您的问题,您想要向社区提问的话,请到 Twitter 上的 @FirefoxSupport 或 Reddit 上的 /r/firefox 提问,我们的支持社区将会很快回复您的疑问。

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

firefox reports "the certificate is not trusted because the issuer certificate is unknown". SSL cert if from RapidSSL (SHA256), IE doesn't bring up any errors?

more options

Hi all, I'm using Firefox 39.0. When I try to connect to our web site, (which has a RapidSSL certificate installed) it shows the errors;

 "the certificate is not trusted because the issuer certificate is unknown"
 "the server might not be sending the appropriate intermediate certificates"
 "An additional root certificate may need to be imported"

If I look at the certificate chain I get the information below; Under the issued by, I have

 RapidSSL SHA256 CA - G3
 GeoTrust Inc.
 <Not Part Of Certificate>

When I go to the site with IE, there is no security warning. Any help with this is greatly appreciated.

Hi all, I'm using Firefox 39.0. When I try to connect to our web site, (which has a RapidSSL certificate installed) it shows the errors; "the certificate is not trusted because the issuer certificate is unknown" "the server might not be sending the appropriate intermediate certificates" "An additional root certificate may need to be imported" If I look at the certificate chain I get the information below; Under the issued by, I have RapidSSL SHA256 CA - G3 GeoTrust Inc. <Not Part Of Certificate> When I go to the site with IE, there is no security warning. Any help with this is greatly appreciated.

所有回复 (3)

more options

Could you check that the server is sending a complete certificate hierarchy with this test page:

https://www.ssllabs.com/ssltest/

And/or, if you want to post an address to the problem site, we could take a look at how our Firefoxes handle it.

more options

Hi jscher2000, thanks for your reply. I have previously run the test from the test site and it has reported certificate chain issues. However I'm not sure what to do about it. If you wouldn't mind checking the server address is filr.ccaa.com.au. If possible please let me know how to resolve the issue. Thanks again.

more options

If you have access to the web server, you need to install an intermediate certificate file. More info:

https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=AR1548

This server identifies itself as "Apache-Coyote/1.1", which is not familiar to me, but probably uses a directory structure similar to other Apache-based servers where the intermediate cert file goes into the same directory as your site certificate.