Speed up SSL issuance
GoGetSSL® offers fastest issuance of SSL due to use of LEI code and API automation. Legal Entity Identifier (LEI) is a global identity code, just like DUNS. Learn how LEI works.
On websites that need to be secured (the address starts with "https: //"), Firefox must verify that the certificate provided by the website is valid. If the certificate cannot be verified, Firefox will stop connecting to the website and display instead of a page with the "Warning: Potential Security Risk" error. This article explains why you can see the error code "SEC_ERROR_UNKNOWN_ISSUER", "MOZILLA_PKIX_ERROR_MITM_DETECTED" or "ERROR_SELF_SIGNED_CERT" on websites and how to fix it.
During a secure connection, the website must submit a certificate issued by a trusted certificate authority in order for Firefox to verify that the user is connected to the required website and the connection is encrypted. If you click the Advanced button on the page with the error "Warning: potential security risk" and see the error code "SEC_ERROR_UNKNOWN_ISSUER" or "MOZILLA_PKIX_ERROR_MITM_DETECTED", this means that the certificate was issued by a certification authority that is not known to Firefox and therefore cannot be trusted default.
Third-party antivirus software may interfere with secure Firefox connections. We recommend that you remove your third-party software and use the security software offered by Microsoft for Windows instead:
If you do not want to remove your third-party software, you can try reinstalling it, which may cause the software to place its certificates in the trusted Firefox repository again.
Some traffic monitoring/filtering products used in corporate environments can intercept encrypted connections, replacing the website certificate with their own, which may cause errors on secure HTTPS sites. If you suspect this is your case, please contact your IT department to find out how to properly configure Firefox to work correctly in such an environment, since the necessary certificate may need to be placed in the trusted repository first Firefox certificates. More information on what needs to be done for IT can be found on the Mozilla Wiki CA: AddRootToFirefox page.
Some types of malware that intercept encrypted web traffic can cause a similar error message - see the article Troubleshooting Firefox caused by malware to find out how to resolve malware problems.
If you encounter this problem only on a specific site, this type of error usually indicates that the webserver is not configured correctly. However, if you see this error on genuine large sites such as Google or Facebook, or sites where financial transactions are conducted, you must follow the steps outlined above.
On a site with a missing intermediate certificate, you will see the following error description after clicking Advanced on the error page:
On a site with a self-signed certificate, you will see the error code ERROR_SELF_SIGNED_CERT and the subsequent description of the error after you click Advanced on the error page:
If you encounter this problem on a multitude of unrelated HTTPS sites, this indicates that something on your system or network intercepts your connection and injects certificates in a way that Firefox does not trust. In most cases, anti-virus software scans encrypted connections or listens for malware, replacing legitimate website certificates with their own. In particular, it displays as the error code "MOZILLA_PKIX_ERROR_MITM_DETECTED" if Firefox can detect that the connection is being intercepted.
If rebooting and antivirus scanning did not help, then you must manually delete the Mozilla Firefox security certificate file called cert8.db. This file may be damaged and for this reason the error described by me may occur. To remove cert8.db you need to do the following:
Warning: You should never add a certificate exception to well-known websites or sites dealing with financial transactions - in this case, an invalid certificate may be an indicator that your connection is compromised by a third party.
Get a Domain Validation SSL certificate within just 5 minutes using our friendly and automated system. No paperwork, callback or company required.
Found a better price? We will match it - guaranteed. Get the best possible price in the World with us. The correct place to save your money.
Try 90-day Trial SSL Certificate before the real purchase to test cert's functionality. 99.9% browser and mobile support. Free reissues.
Customer satisfaction is our major concern. Get a full refund within 30 days for any purchase of SSL certificates with 100% guarantee.