Codomo PositiveSSL sec_error_unknown_issuer in firefox fix for apache2

PANIC ! ACK! You just got your Codomo positiveSSL domain validation certificate zip file ,everything works fine in Chrome.. But damnit Firefox doesn’t work..

You might have found something like this in the certificate window in Firefox:

Technical Details

Invalid security certificate.

The certificate is not trusted because no issuer chain was provided. (Error code: sec_error_unknown_issuer)

To fix this:

Copy the following files into a new file named www_yourdomain_com.ca_bundle:

  1. AddTrustExternalCARoot.crt
  2. COMODORSAAddTrustCA.crt
  3. COMODORSADomainValidationSecureServerCA.crt
  4. www_yourdomain_com.crt

(replace your_domain_com with your actual domain with underscores. )

Place it in the same place you stashed your .key and .crt and .csr files for your certificate.

Now instead of trying to point to the individual files you point to just the bundle  from your vhost.

        SSLEngine on

        SSLCertificateFile /etc/ssl/certs/www_yourdomain_com.crt

        SSLCertificateKeyFile /etc/ssl/certs/www_yourdomain_com.key

        SSLCertificateChainFile /etc/ssl/certs/

Restart your apache server all should be fine now :)

One thought on “Codomo PositiveSSL sec_error_unknown_issuer in firefox fix for apache2”

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.