02-25-2014 07:12 AM
We've had PAN kit for the best part of a year and use it for SSL decryption among other things.
The SSL certs were generated via a CA on our domain. IE, and Chrome work transparently, firefox used to. I know get a "This Connection is Untrusted" page in firefox.
www.facebook.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)
It seems that firefox isnt recognizing our CA for some reason. Hopefully someone else has seen this behavior.
02-25-2014 07:50 AM
IE & Chrome use the Windows certificate store
Firefox has its own
You need to export your decryption root CA (the one you marked as Forward Trust Certificate)
and import it to the Firefox Trusted Root CA Store.
03-05-2014 10:52 AM
As Marco has stated, IE & Chrome share the same cert repository, while Firefox utilizes it's own. You will need to manually import the cert into Firefox via the Certificate Manager as a Trusted Authority, then Trust the CA to identify websites when prompted:
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!