Revoked old certificate and Firefox thinks the new certificate is revoked

2 réponses
1 a ce problème
1 vue
Dernière réponse par dpbaker57

il y a 6 ans

13/08/2018 02:15

I have a site where the old certificate was about to expire. I installed a new one and revoked the previous certificate. Now Firefox and only Firefox is reporting the new certificate as expired. Safari, Edge, IE, and Chrome are all seeing the new certificate as valid. Anyone have a clue as how to fix this?

Answer 1 · 2018-08-13 02:15:56

jscher2000 - Support Volunteer

Top 10 Contributor

13/08/2018 02:20

Firefox still uses OCSP, unlike some other browsers.

Could you double-check using: https://www.ssllabs.com/ssltest/

If you think Firefox may have cached the old certificate and that is preventing it from seeing the new one, and that persists after a normal browser restart, you could consider removing the cert9.db file as mentioned in this article: What do the security warning codes mean?

Answer 2 · 2018-08-13 02:15:56

dpbaker57 Auteur de la question

13/08/2018 03:25

From more research it appears Firefox still is using the CRL file. My CA seems to have screwed up and put the new certificate's serial number in the CRL file. I am installing a new certificate.

Rechercher dans l’assistance

Revoked old certificate and Firefox thinks the new certificate is revoked

Toutes les réponses (2)

Parcourir par produit

Explorer par sujet

Naviguez par produit

Parcourir toutes les discussions du forum par sujet

Obtenir de l’assistance pour

Rechercher dans l’assistance

Revoked old certificate and Firefox thinks the new certificate is revoked

Toutes les réponses (2)