Error code: sec_error_unknown_issuer Solution Valid SSL Certificate Throwing Error in Firefox

So you've just purchased your SSL cert, renewed it and installed it or maybe you've had it installed and working fine all the time with all other browsers but you've upgraded to a recent version of Firefox and suddenly get the warning "Error code: sec_error_unknown_issuer" error.

This is terrible since if you bought an SSL cert, you are most likely using it for trust purposes for your business and obviously that message will scare away most potential customers.

The Easy Solution

You need the CA Certificate Bundle which even threw me off because  I've always just used the .crt/certificate file issued for the domain and the .key/private key file and things have always worked.

Find the CA Chain file that is also provided by your SSL provider and add it to your configuration.  In Apache this means adding a line like this to your Apache Vhost/Control Panel

SSLCACertificateFile /etc/ssl-certs/RapidSSL_CA_bundle.pem

After that just restart Apache and the error will be gone.

This issue is also discussed on:

Comodo's website

RapidSSL's website


Tags:

sec_error_unknown_issuer, valid, ssl, certificate, firefoxso, ve, purchased, cert, renewed, installed, browsers, upgraded, firefox, quot, purposes, ca, bundle, crt, issued, domain, provided, provider, configuration, apache, adding, vhost, panel, sslcacertificatefile, etc, certs, rapidssl_ca_bundle, pem, restart, comodo, website, rapidssl,

Latest Articles

  • Linux tftp listens on all interfaces and IPs by DEFAULT Security Risk Hole Solution
  • python import docx error
  • Cisco Unified Communications Manager Express Cheatsheet CUCME CME
  • Linux Ubuntu Debian Missing privilege separation directory: /var/run/sshd
  • bash how to count the number of columns or words in a line
  • bash if statement how to test program output without assigning to variable
  • RTNETLINK answers: Network is unreachable
  • Centos 7 how to save iptables rules like Centos 6
  • nfs tuning maximum amount of connections
  • qemu-kvm error "Could not initialize SDL(No available video device) - exiting"
  • Centos 7 tftpd will not work with selinux enabled
  • Debian Ubuntu Mint Howto Create Bridge (br0)
  • How To Control Interface that dhcpd server listens to on Debian based Linux like Mint and Ubuntu
  • LUKS unable to type password to unlock during boot on Debian, Ubuntu and Mint
  • Debian Ubuntu and Linux Mint Broken Kernel After Date - New Extra Module Naming Convention
  • Wordpress overwrites and wipes out custom htaccess rules and changes soluton
  • Apache htaccess and mod_rewrite how to redirect and force all URLs and visitors to the SSL / HTTPS version
  • python 3 pip cannot install mysql module
  • QEMU-KVM won't boot Windows 2016 or 2019 server on an Intel Core i3
  • Virtualbox vbox not starting