Error code: sec_error_unknown_issuer Solution Valid SSL Certificate Throwing Error in Firefox

So you've just purchased your SSL cert, renewed it and installed it or maybe you've had it installed and working fine all the time with all other browsers but you've upgraded to a recent version of Firefox and suddenly get the warning "Error code: sec_error_unknown_issuer" error.

This is terrible since if you bought an SSL cert, you are most likely using it for trust purposes for your business and obviously that message will scare away most potential customers.

The Easy Solution

You need the CA Certificate Bundle which even threw me off because  I've always just used the .crt/certificate file issued for the domain and the .key/private key file and things have always worked.

Find the CA Chain file that is also provided by your SSL provider and add it to your configuration.  In Apache this means adding a line like this to your Apache Vhost/Control Panel

SSLCACertificateFile /etc/ssl-certs/RapidSSL_CA_bundle.pem

After that just restart Apache and the error will be gone.

This issue is also discussed on:

Comodo's website

RapidSSL's website


Tags:

sec_error_unknown_issuer, valid, ssl, certificate, firefoxso, ve, purchased, cert, renewed, installed, browsers, upgraded, firefox, quot, purposes, ca, bundle, crt, issued, domain, provided, provider, configuration, apache, adding, vhost, panel, sslcacertificatefile, etc, certs, rapidssl_ca_bundle, pem, restart, comodo, website, rapidssl,

Latest Articles

  • Cisco Unified Communications Manager / CUCM IP 8.6,10,12 Install Error Solution
  • Ubuntu Debian Mint Linux SSHD OpenSSH Server Not Starting After Reboot Solution
  • nmap how to scan for all ports and not just the 1000 most common ports
  • Windows 7,8,10 and Server 2008, 2012, 2016, 2019 Read Only Attribute Won't Go Away
  • bind / named how to make a wildcard record and retain defined A records
  • Cisco Unified Communications Manager 12 Install Errors on Proxmox/KVM
  • Local Vs Universally Administered MAC Address NIC Refuses to come up
  • Cisco Unified Communications Manager 12 CUCM 12 - How To Enable Video Calling
  • Windows 7, 8, 10, Windows Server 2008, 2012, 2016, 2019 How To AC97 Audio Drivers and Other Unsigned Drivers
  • Cisco Unified Communications Manager / CUCM IP Telephony Definitions
  • tftp Linux xinetd verbose logging
  • Linux delete unused tap devices automatically
  • Linux qemu-kvm How To Enable Soundcard in Guestl
  • QEMU-KVM Windows and Server Guest Installs Mouse Tracking Pointer Location Solution
  • SSH Keep Alive To stop Disconnections
  • Linux How To Disable SATA NCQ For Better Performance
  • the sign-in method you're trying to use isn't allowed. For more info, contact your network administrator - solution for active directory
  • gsmartcontrol for Windows to Check the SMART S.M.A.R.T status
  • WebRTC Vulnerability Shows Local IP Address Even When Using a Proxy or VPN Firefox Fix And Disable Solution
  • chroot in Linux Howto Simple and Easy Guide