This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Lolu chungechunge lwabekwa kunqolobane. Uyacelwa ubuze umbuzo omusha uma udinga usizo.

Connection is not secure error, when using a local trusted Root CA in the domain.

  • 6 uphendule
  • 2 zinale nkinga
  • 1 view
  • Igcine ukuphendulwa ngu mvassallo

more options

We are using a local root CA in a domain and the certificate is example.local. When accessing this website we're still having the Connection is not secure error. Strangely enough this is not happening on other browsers.

We also tried to manually import the Root CA certificate in the FF certificate manager.

We are using a local root CA in a domain and the certificate is example.local. When accessing this website we're still having the Connection is not secure error. Strangely enough this is not happening on other browsers. We also tried to manually import the Root CA certificate in the FF certificate manager.

All Replies (6)

more options

Hi mvassallo, what is the error code? You might need to click the "Advanced" or "More information" button (the one to the right of the Go Back button in the page) to access that.

As you may recall, the Certificate Manager dialog on the Options page has several tabs. Make sure you import into the Authorities tab.

more options

Hi Thanks for your reply. Yes we did import the root CA in the Authorities tab. Could this be because the certificate domain is published for .local? Chrome recognizes this cert and does not prompt for any security warning. We want to implement this acception for firefox via GPO if there is no fix for it.

more options

What error code are you getting?

Also, we probably should move your question to the "Firefox for Enterprise" forum where you could hopefully attract a response from someone more familiar with Firefox's Group Policy features.

more options

Quote: we probably should move your question to the "Firefox for Enterprise" forum

I was thinking the same when I noticed this question and will move it over to "Firefox for Enterprise".

more options

Do you see the certificate added to the certificate chain when this certificate is imported in the Certificate Manager?

Any luck with importing root certificates from the Windows certificate storage?

You can set this pref to true on the about:config page to import root certificate(s) from the Windows certificate store (there is a policy available, so this is merely a quick test).

  • security.enterprise_roots.enabled = true
more options

Thanks all for your help! :)

Unfortunately these still did not solve the issue. Is there a way how to force Firefox to trust the local cert stores?