Error code: sec_error_unknown_issuer Solution Valid SSL Certificate Throwing Error in Firefox

So you've just purchased your SSL cert, renewed it and installed it or maybe you've had it installed and working fine all the time with all other browsers but you've upgraded to a recent version of Firefox and suddenly get the warning "Error code: sec_error_unknown_issuer" error.

This is terrible since if you bought an SSL cert, you are most likely using it for trust purposes for your business and obviously that message will scare away most potential customers.

The Easy Solution

You need the CA Certificate Bundle which even threw me off because  I've always just used the .crt/certificate file issued for the domain and the .key/private key file and things have always worked.

Find the CA Chain file that is also provided by your SSL provider and add it to your configuration.  In Apache this means adding a line like this to your Apache Vhost/Control Panel

SSLCACertificateFile /etc/ssl-certs/RapidSSL_CA_bundle.pem

After that just restart Apache and the error will be gone.

This issue is also discussed on:

Comodo's website

RapidSSL's website


Tags:

sec_error_unknown_issuer, valid, ssl, certificate, firefoxso, ve, purchased, cert, renewed, installed, browsers, upgraded, firefox, quot, purposes, ca, bundle, crt, issued, domain, provided, provider, configuration, apache, adding, vhost, panel, sslcacertificatefile, etc, certs, rapidssl_ca_bundle, pem, restart, comodo, website, rapidssl,

Latest Articles

  • Cisco Router Setup Guide and Tutorial Howto With Commands and Examples
  • Linux Bash Script To List All Connected IPs and their network name
  • Cisco Switches How To Get Of Port Line Status Console Messages
  • Cisco DHCP Snooping Relay Setup Information
  • Cisco Switch Setup Guide Command List
  • Cisco 2960 Switch Reset To Factory Defaults
  • How To Boot Cisco CUCM UCSInstall 8.6, 10, 11 and 12 on KVM/Proxmox
  • VBOX VirtualBox How To Import Raw .img Disk File
  • Windows Server 2012, 2016, 2019 How To Install and Missing Disabled Telnet Client
  • proxmox vm networking breaks when you restart your network on the hostnode
  • Linux ln symlink how to update existing symbolic link
  • Ubuntu 18.04 / Linux Mint 19.1 Cannot Type or Login - solution
  • LUKS Hard Drive Encryption on Linux Mint Ubuntu Debian etc how to mount encrypted hard drive
  • How to use nmap locate other machines/computers/servers on your network using nmap
  • Linux Mint 18.2 Create Config File To Start Application Upon Login
  • Dell Wyse Thin Client BIOS Access Key
  • sudoers file in /etc warning about comments/includes!
  • Centos 7 Reallocate logical volume space to another
  • lvm how to reduce volume size
  • letsencrypt certbot error "Unable to find a virtual host listening on port 80 which is currently needed for Certbot to prove to the CA that you control your domain. Please add a virtual host for port 80."