Firefox SSL decryption issue

Showing results for 
Show  only  | Search instead for 
Did you mean: 

Firefox SSL decryption issue

L1 Bithead

We've had PAN kit for the best part of a year and use it for SSL decryption among other things. 

The SSL certs were generated via a CA on our domain. IE, and Chrome work transparently, firefox used to. I know get a "This Connection is Untrusted" page in firefox. uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)

It seems that firefox isnt recognizing our CA for some reason. Hopefully someone else has seen this behavior.


L3 Networker

IE & Chrome use the Windows certificate store

Firefox has its own

You need to export your decryption root CA (the one you marked as Forward Trust Certificate)

and import it to the Firefox Trusted Root CA Store.



L3 Networker

Hello Depps,

As Marco has stated, IE & Chrome share the same cert repository, while Firefox utilizes it's own. You will need to manually import the cert into Firefox via the Certificate Manager as a Trusted Authority, then Trust the CA to identify websites when prompted:




  • 2 replies
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!