Error code: sec_error_unknown_issuer Solution Valid SSL Certificate Throwing Error in Firefox

So you've just purchased your SSL cert, renewed it and installed it or maybe you've had it installed and working fine all the time with all other browsers but you've upgraded to a recent version of Firefox and suddenly get the warning "Error code: sec_error_unknown_issuer" error.

This is terrible since if you bought an SSL cert, you are most likely using it for trust purposes for your business and obviously that message will scare away most potential customers.

The Easy Solution

You need the CA Certificate Bundle which even threw me off because  I've always just used the .crt/certificate file issued for the domain and the .key/private key file and things have always worked.

Find the CA Chain file that is also provided by your SSL provider and add it to your configuration.  In Apache this means adding a line like this to your Apache Vhost/Control Panel

SSLCACertificateFile /etc/ssl-certs/RapidSSL_CA_bundle.pem

After that just restart Apache and the error will be gone.

This issue is also discussed on:

Comodo's website

RapidSSL's website


Tags:

sec_error_unknown_issuer, valid, ssl, certificate, firefoxso, ve, purchased, cert, renewed, installed, browsers, upgraded, firefox, quot, purposes, ca, bundle, crt, issued, domain, provided, provider, configuration, apache, adding, vhost, panel, sslcacertificatefile, etc, certs, rapidssl_ca_bundle, pem, restart, comodo, website, rapidssl,

Latest Articles

  • QEMU / KVM How To Manually Create Basic Virtual Machine VM
  • Linux wlan0 check all wireless clients
  • PHP Issues With Decoding Strange Smart Quotes And Non-Standard ASCII Characters
  • /etc/iproute2/rt_tables default settings file in Linux Centos 6,7 and most other NIX's
  • bind named error solutions named[2169]: error (no valid DS) resolving / error (broken trust chain) resolving / : error (no valid RRSIG) resolving 'com/DS/IN':
  • iptables how to log ALL dropped incoming packets
  • How To Edit Linux Based NM Network Manager Connection Settings Without GUI
  • Linux Disable IPV6 Centos / Debian / Mint Howto
  • Linux use growisofs to burn a larger file on a BD-R / Bluray Disc
  • Linux partprobe/partx cannot access last and 4th partition
  • DRBD Errors Caused By Physical Corruption
  • mdadm: add new device failed for /dev/sdb4 as 3: Invalid argument solution
  • Linux named / bind how to dump, view and clear the cache!
  • Centos 6 / 7 / 8 How To Change Default nameservers in /etc/resolv.conf when using DHCP / dhclient
  • Adobe Acrobat Reader for Linux to use and view XFA Fillable Forms
  • Debian Linux Mint Ubuntu iptables save and restore settings automatically onboot and reboot
  • Why SMART is not smart at all and doesn't properly predict disk errors that cause a kernel panic or crash
  • scp: ambiguous target error and solution
  • VirtualBox How To Add iSCSI Storage using VBoxManage
  • iSCSI on Centos 7 Configuration and Setup Guide for Initiator and Target