Closed Bug 1395099 Opened 8 years ago Closed 8 years ago

cannot access to https site

Categories

(Core :: Security: PSM, defect)

Product:
Core
Component:
Security: PSM
Version:
57 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: jmreymond, Unassigned)

Details

Attachments

(2 files)

certificate
28.83 KB, application/x-pkcs7-certificates
Details
root certificate
1.50 KB, application/x-x509-ca-cert
Details
User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0 Build ID: 20170829100404 Steps to reproduce: I access to https site in my enterprise Actual results: messsage: connection is not secured Expected results: access to the site
I have all the certificate which are included by my enterprise. It is OK with IE and Chrome but not with Firefox nigthly
Only on Nightly? How about Firefox 55?
I cannot install firefox 55 in my enterprise, due to security checks
I don't know why your company allows you to use Nightly, which is unstable alpha version not suitable for production environment. Anyway, moving to a better product/component for investigation.
Component: Untriaged → Security: PSM
Product: Firefox → Core
It seems that official Firefox installer writes into Windows registry which is not allowed. Nightly does not write in Windows registry and I can use Nightly. So, I use Nightly only to help mozilla fundation and not to have a tool for production environment.
(In reply to jean-max Reymond from comment #1) > I have all the certificate which are included by my enterprise. Does this mean you have imported them into Firefox using the certificate manager? (about:preferences -> Privacy & Security -> View Certificates... -> Authorities) Are the trust settings correct? (if you select a CA you imported and click "Edit Trust", the first checkbox should be checked) You can also try setting "security.enterprise_roots.enabled" to true in about:config. It might also help if you visit an https site, click "Advanced", click the error code, and then click "Copy text to clipboard" and paste the results in this bug. Thanks!
Flags: needinfo?(jmreymond)
It was imported previously by Internet Explorer for all thecomputer and Chrome has no problems with it. So, I import the certificates again and it seems that Firefox has troubles with my root authorities and the path. I think it is not relative to nightly but for all the firefox products but I cannot install a firefox official release so you can close this bug
Flags: needinfo?(jmreymond)
Chrome uses the Windows certificate database, so it's expected that it would work. When you say you imported the certificates again, did you import the certificates into Firefox using Firefox's Certificate Manager, or did you install them on your Windows machine again? It might also help if you could attach those certificates to this bug - perhaps we could determine why Firefox might not be accepting them.
Flags: needinfo?(jmreymond)
Attached file certificate
certificate
Flags: needinfo?(jmreymond)
Attached file root certificate
the root certificate
Now, I am using Firefox Certificate manager with my two certificate
works with 57.0a1 (2017-09-04) (64 bits) all is OK
Ok - if I understand correctly, your setup is working fine now, so I'll close this bug.
Status: UNCONFIRMED → RESOLVED
Closed: 8 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: