Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Can't open hotmail with Firefox; OCSP invalid signing cert

  • 1 cavab
  • 1 has this problem
  • 16 views
  • Last reply by cor-el

more options

Can't open hotmail using Firefox. SEC_ERROR_ OCSP_INVALID_SIGNING_CERT is message. If I hit try again rapidly in succession sometimes the hotmail will open. Microsoft advises using another browser until Firefox corrects issue and contacting Firefox for help. I don't want to take any action that will open me up to malicious activity. I don't want to go around the security of signing in normally. Do you know if Firefox is working on this issue? Microsoft is interested in action being taken by Firefox techs.

Is there another site for Firefox I should be addressing with my issue?

Thanks, Leitrim

Can't open hotmail using Firefox. SEC_ERROR_ OCSP_INVALID_SIGNING_CERT is message. If I hit try again rapidly in succession sometimes the hotmail will open. Microsoft advises using another browser until Firefox corrects issue and contacting Firefox for help. I don't want to take any action that will open me up to malicious activity. I don't want to go around the security of signing in normally. Do you know if Firefox is working on this issue? Microsoft is interested in action being taken by Firefox techs. Is there another site for Firefox I should be addressing with my issue? Thanks, Leitrim

All Replies (1)

more options

Hi

If you get the SEC_ERROR_OCSP_INVALID_SIGNING_CERT error message then this is a problem with Microsoft servers that are sending a cached OCSP Staplingresponse that is signed with an expired certificate.

Microsoft needs to reboot/repair the servers that have cached this expired certificate that is used to sign the OCSP Stapling response. You should no longer experience this issue once the server that you access has been fixed. Hopefully they will fix this quickly on affected servers.


As a workaround you can temporarily toggle this pref to false on the about:config page to see if disabling OCSP Stapling works for you.

  • security.ssl.enable_ocsp_stapling = false

You can open the about:config page: via the location/address bar. You can accept the warning and click "I'll be careful" to continue.

It is best to reset this pref via the right-click context menu to true once you are done with accessing an affected website since this is a security feature.

See also: