Firefox SSL decryption issue

Reply
Highlighted
L1 Bithead

Firefox SSL decryption issue

We've had PAN kit for the best part of a year and use it for SSL decryption among other things. 

The SSL certs were generated via a CA on our domain. IE, and Chrome work transparently, firefox used to. I know get a "This Connection is Untrusted" page in firefox.

www.facebook.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)

It seems that firefox isnt recognizing our CA for some reason. Hopefully someone else has seen this behavior.

Tags (3)
L3 Networker

Re: Firefox SSL decryption issue

IE & Chrome use the Windows certificate store

Firefox has its own

You need to export your decryption root CA (the one you marked as Forward Trust Certificate)

and import it to the Firefox Trusted Root CA Store.

Regards

Marco

L3 Networker

Re: Firefox SSL decryption issue

Hello Depps,

As Marco has stated, IE & Chrome share the same cert repository, while Firefox utilizes it's own. You will need to manually import the cert into Firefox via the Certificate Manager as a Trusted Authority, then Trust the CA to identify websites when prompted:

ff.JPG.jpg

Regards,

Bryan

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!