With the new Firefox 10.0 cannot connect to my office https portal (with a self-signed certificate)

Similar Messages

• I upgraded my iPhone to 6.0 and in trying to go to The App Store via the new Passbook it says "cannot connect to iTunes store, Help!

  I upgraded my iPhone to 6.0 and in trying to go to The App Store via the new Passbook it says "cannot connect to iTunes store, Help!

  You need to go to Date & Time and change the date ahead more than a year. Then try and then you can change the date back.

• In Firefox 4.0 with a Server with a self signed certificate using IPv6 I can not add a "Security Exception" for this certificate.

  In Firefox 4.0 I have a server ... it contains a self signed certificate. Using IPv6 I can not add a "Security Exception" for this certificate.
  1. I log onto the server (using IPv6). I get the "Untrusted connection page" saying "This connection is Untrusted"
  2. I click on "Add Exception.." under the "I understand the Risks" section.
  3. The "Add Security Exception" dialog comes up. soon after the dialog comes up I get an additional "Alert" dialog saying
  An exception occured during connection to xxxxxxxxx.
  Peer's certificate issuer has been marked as not trusted by the User.
  (Error code sec_error_untrusted_issuer).
  Please note that this works in Firefox 3.6.16 (in IPv4 and IPv6). It also works in Firefox 4.0 in IPv4 only IPv6 has an issue. What's wrong?

  Exactly the same problem, except I'm using FF v6 for Windows, not FF v4 as for the lead post. This is for a self-cert which IS trusted, although the error message says it isn't.

• Mail.app with a self-signed certificate in postfix/dovecot

  I thought I'd post this tidbit about getting Mail.app to work correctly with a self-signed certificate in a postfix/dovecot Linux installation; in my case under Debian Lenny. After setting this up, my Mail.app refused to connect to the outgoing server to deliver mail. In the postfix logs, I would see "SSL_accept error from ...: -1". The problem ended up being that postfix uses the default "snakeoil" self-signed certificate, while dovecot creates its own. If the IMAP and SMTP hosts are the same as they were in my case, when you accept the dovecot certificate upon the first IMAP connection, the SMTP connection with a different certificate will fail. This is because after the accept there is now a known certificate for that host, and the new certificate presented by postfix will not match. To fix this, either use different hosts for IMAP and SMTP, or use the same (perhaps the "snakeoil") certificate in both the postfix and dovecot configuration.

  Exactly the same problem, except I'm using FF v6 for Windows, not FF v4 as for the lead post. This is for a self-cert which IS trusted, although the error message says it isn't.

• How to access Flash Apps over https with a self signed certificate?

  I have a Flex app that needs to access data from a SOAP web service over https with a self signed certificate. The app needs to ignore the https warnings, just as a browser would warn & allow the user to proceed. Buying a valid signed certificate is not an option for us.
  It works fine over http.
  How can I achieve this?
  I read that URLRequest has a property: authenticate, that I can set to false. However, this property is available only for Adobe AIR applications from what I can see. This doesn't seem available for Flex apps.
  I have tried this in both Flex 3 & the latest Flash Builder 4. Have the same issue in both cases.
  Help appreciated.
  Thanks

  You'd really need to ask in the Flex or Flash Builder forums as this is a front end code modification and Flash Player can't do any of that.

• Problem with placing self-signed certificate in trust store on WLS 10.3

  I have had some problems setting up two-way SSL on WLS 10.3.2.
  1. I have not been able to use the java properties listed on
  http://weblogic-wonders.com/weblogic/2010/11/09/enforce-weblogic-to-use-sun-ssl-implementation-rather-than-certicom/
  to use the native Java SSL implementation rather than the certicom. Has anyone else had success using these?
  -Djava.protocol.handler.pkgs=com.sun.net.ssl.internal.www.protocol
  -Dssl.SocketFactory.provider=com.sun.net.ssl.internal.SSLSocketFactoryImpl
  -DUseSunHttpHandler=true
  -Dweblogic.wsee.client.ssl.usejdk=true (for webservice clients)
  2. When I use the ValidateCertChain to validate my keystore with the self-signed certificate I get the message
  CA cert not marked with critical BasicConstraint indicating it is a CA
  Certificate chain is invalid
  which I read was a problem with certificates generated by keytool, yet I find I was not able to circumvent this
  by setting the property weblogic.security.SSL.enforceConstraints to off in the WLS server environment.
  Has anyone else noticed this?
  3. The error I get is
  ####<Feb 15, 2011 1:12:21 PM EST> <Debug> <SecuritySSL> <hostname> <server
  <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1297793541204> <BEA-000000> <Exception during hands
  hake, stack trace follows
  java.lang.NullPointerException
  at com.certicom.security.cert.internal.x509.X509V3CertImpl.checkValidity(Unknown Source)
  at com.certicom.security.cert.internal.x509.X509V3CertImpl.checkValidity(Unknown Source)
  at com.certicom.tls.interfaceimpl.CertificateSupport.findInTrusted_Validity(Unknown Source)
  ####<Feb 15, 2011 1:12:21 PM EST> <Debug> <SecuritySSL> <hostname> <server> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tunin
  g)'> <<WLS Kernel>> <> <> <1297793541207> <BEA-000000> <NEW ALERT with Severity: FATAL, Type: 40
  java.lang.Exception: New alert stack
  at com.certicom.tls.record.alert.Alert.<init>(Unknown Source)
  at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
  Are there other conditions besides the issue about the missing Basic Constraint field that can raise an
  alert with type 40?
  4. Steps I used to generate jks keystore for inclusion in trust keystore (actual values substituted):
  ** keytool -genkey -alias mykey -keystore mykeystore -validity 35600 \
  -dname "cn=Common Name, ou=Common Name, o=Org, l=location, s=state, c=US" \
  -storepass mypass -keypass mypass
  ** exported a DER format head certificate of mykey into mykey.cer.der
  ** keytool -import -trustcacerts -keystore DemoTrust.jks -alias mykey -file mykey.cer.der
  Any comments appreciated and thanks for this forum.

  Faisal,
  Certicom has an internal restriction that a Date must be notBefore 1970 and notAfter 2105 inclusive.The Java-generated key is valid until Wed Mar 14 11:03:59 EDT 2108. Your knowledge of this area is
  quite impressive, thank you so much for this!

• Avoid an alert with using self-signed certificate

  Hi
  I want to publish a free product and I would like to use a free self-signed certificate
  But during installing, the Adobe Exstension Manager shows an alert
  Where is a way how to avoid this alert with using a self-signed certificate (I generated certificate with help of Adobe Exchange Packager) or I should only use a paid code-signed certificate?
  Best regards
  Maxim

  As I understund, "Show warning when instaling..." this option available only for end user in Exstantion manager, right? It means there is no way how to switch off this warning if I use ucf.jar tool for packing ZPX and an user uses default setting on this end. When, only one way is left - to buy a payed certificate, even for free product. Correct?

• TS1368 I have had my update to 6.0 but can't access the new passbook it says "cannot connect to iTunes Store". Why is this?

  I 'Cannot connect to iTunes store' , why is this? I had updated to 6.0 yesterday. When I went on new passbook and tapped the App Store it came up with cant connect to iTunes Store. Help!

  Trylogging out of your Apple ID and logging in again, it worked for me

• Does Firefox Home work with custom servers with a self signed certificate?

  I've setup my own custom Firefox Sync server which has a self signed SSL certificate.
  When I try to connect to it using Firefox Home I get the error:
  Cannot Sync - Failed To Communicate With Server (1)
  Firefox on my Mac and Windows laptop Sync fine with my custom firefox sync server providing I create an exception first. But no such luck with my iPhone.

  Access your server with ssl using https://<servername> . Firefox will warn you about untrusted certificate, and suggest you to add an exception. This exception will work for firefox sync too.

• I am already a Firefox user, how do I get rid of the new Firefox setup on my computer?

  I am already a Firefox user, how do I get rid of the new Firefox 4 setup on my computer now?

  http://www.computertechtips.net/64/make-firefox-4-look-like-ff-3-6/

• Cannot accept self-signed certificate on some machines

  I'm trying to connect to a certain server that uses a self-signed certificate - the admin thinks that's safer than accepting thousands of unknown intermediate CAs, and he has a point; witness the Certificate Patrol add-on.
  When I try from some client machines with various OS, FireFox versions etc., it works. I can accept the certificate permanently.
  But on at least 3 machines, I get an error message "unable to obtain identification status for the given site", and I cannot confirm an exception and get to the site at all.
  2 of those machines have FF 10.0.4. But on another machine with FF 10.0.4, there is no problem.
  On machines where I can store an exception, when I look in the certificate manager, the certificate is marked "(not stored)", and I cannot view it. What does that mean ? A few other certs in the server store are also marked not stored, while most have a certificate name and are viewable, along with one marked "no nickname".

  The issue seems to revolve around a cached HTTPS redirect when the server certificate has changed. I have filed https://bugzilla.mozilla.org/show_bug.cgi?id=767611
  The "not stored" issue I realize is due to a permanent excep[tion for a self-signed certificate being stored as a certificate authority, with a placeholder in the servers tab

• Export extension to ZXP with self-signed certificate

  Hello,
       I am having this issue with Extension Manager not allowing the install of an extension exported from Extension Builder with a self-signed certificate. It always says that the signature is invalid, even with the sample projects exported packages. I am on Mac OS Snow Leopard. Anyone else experiencing this ?
  Regards.

  Hello,
       I am having this issue with Extension Manager not allowing the install of an extension exported from Extension Builder with a self-signed certificate. It always says that the signature is invalid, even with the sample projects exported packages. I am on Mac OS Snow Leopard. Anyone else experiencing this ?
  Regards.

• Since the most recent Firefox update 3.6.8 by banking institution no longer shows as having a secure encrypted connection, however, my bank assures me all is well with their certificates and that is a problem with the new Firefox browser update, can you g

  Since the most recent Firefox update 3.6.8 my banking institution no longer shows as having a secure encrypted connection, however, my bank assures me all is well with their certificates and that is a problem with the new Firefox browser update, can you give me some idea why it is doing this?
  == This happened ==
  Every time Firefox opened
  == Right after the new Firefox update

  Hello Anne.
  Can you please try it in a new (temporary) Firefox profile and see if the issue is still present? See [http://support.mozilla.com/en-US/kb/Managing+profiles this article] to know how to create a new Firefox profile. Please report back the results.

• I just upgraded to firefox 6 and now cannot connect to the internet. IE still works fine but firefox won't connect. Any suggestions on how to get the new firefox to connect to the internet?

  I just upgraded to ff 6.0.1 via an automatic push. Since then, ff hasnt been able to connect to the internet. Error message:
  Firefox can't establish a connection to the server at www.google.com.Firefox can't establish a connection to the server at www.google.com.
  IE has no trouble connecting to the internet.

  After upgrading, your firewall may not be recognizing the new Firefox version and is not allowing it access to the internet. On your firewall progam's allowed applications list, remove Firefox, then re-start Firefox, try going to a website, your firewall will detect the new version of Firefox, then give the permissions needed for Firefox to have internet access.
  *See: [https://support.mozilla.com/en-US/kb/Cannot%20connect%20after%20upgrading%20Firefox Cannot connect after upgrading Firefox]
  '''If this reply solves your problem, please click "Solved It" next to this reply when <u>signed-in</u> to the forum.'''

• With the new Firefox I cannot geet Google translator. Help!

  I had Google translator on my toolbar before the upgrade to the new Firefox. I am now told that it is not compatible. What can I do? I need a translator on my toolbar. Can I go back to the previous version of Firefox.

  Hello,
  The number of tiles is now determined on screen size - if you zoom out or expand the window you can have more tiles appear.
  If you want to set a fixed number of tiles, you can do so with the following extension:
  * https://addons.mozilla.org/en-US/firefox/addon/new-tab-tools/
  You can also see '''jscher2000''''s Chosen Solution here: https://support.mozilla.org/en-US/questions/1025414
  It requires the [https://addons.mozilla.org/firefox/addon/stylish/ Stylish] add-on but will automatically shrink the tiles on the page:
  * https://userstyles.org/styles/106326/shrink-new-tab-thumbnails
  In the Firefox configuration the limit is set to 3 rows by 5 columns as maximum (if you zoom out the page/shrink the tile sizes sufficiently, the number of tiles are limited to that setting). If you want to change those values:
  # In the [[Location bar autocomplete|Location bar]], type '''about:config''' and press '''Enter'''. The about:config "''This might void your warranty!''" warning page may appear.
  # Click '''I'll be careful, I promise!''' to continue to the about:config page.
  # Search for and modify the preferences (by double clicking the row, or right clicking the row and selecting '''Modify''')
  #* '''browser.newtabpage.columns'''
  #* '''browser.newtabpage.rows'''
  Let us know if that helps.