We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

SSL connection to google.com giving sec_error_unknown_issuer

  • 2 replies
  • 54 have this problem
  • 5 views
  • Last reply by robbiem44

more options

When I try to hit google.com, I get the "Your connection is not secure," then under Advanced, get this:

www.google.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported. (Error code: sec_error_unknown_issuer)

The certificate itself is issued by Websense Inc.

I have tried removing the cert8.db file, I've tried adding an exception. Nothing working.

Thanks

When I try to hit google.com, I get the "Your connection is not secure," then under Advanced, get this: www.google.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. The server might not be sending the appropriate intermediate certificates. An additional root certificate may need to be imported. (Error code: sec_error_unknown_issuer) The certificate itself is issued by Websense Inc. I have tried removing the cert8.db file, I've tried adding an exception. Nothing working. Thanks

Chosen solution

Got it. Basically, I had to export the signing certificate from Chrome (where it was working) and import from within Firefox, and I'm back in business.

Thanks.

Read this answer in context 👍 7

All Replies (2)

more options

If you have the option to set Websense not to intercept/filter secure connections, you could try that. It may depend on whether it's a personal Websense product or a company/enterprise product.

To make Firefox compatible with Websense filtering -- if tests with other secure sites confirm the same issuer and you trust this software -- you probably need to import the software's or proxy's signing certificate into Firefox's Certificate Manager on the Authorities tab. This thread has an example of how you could do that:

https://support.mozilla.org/questions/1089816

more options

Chosen Solution

Got it. Basically, I had to export the signing certificate from Chrome (where it was working) and import from within Firefox, and I'm back in business.

Thanks.