StartCom is an unknown SSL issuer?

Similar Questions

• vCenter Update to 5.5U2 to 5.5U3D - SSL issues?

  Hi, currently I am planning my vCenters of 5.5U2 to 5.5U3d update.

  Are there pitfalls I should be aware of that. I understand that SSL is U3b removed\disabled leave.

  Update of the VC directly to 5.5U3d could cause problems with VC connect to current ESXi (U2 2718055) due to SSL TLS change hosts?

  
  Also there are the implications on the 5.8 SRM?

  Thanks in advance!

  Update of the VC directly to 5.5U3d could cause problems with VC connect to current ESXi (U2 2718055) due to SSL TLS change hosts?

  No, and if you plan to upgrade your hosts you will really need to have your first improved vCenter.

  Also there are the implications on the 5.8 SRM?

  You should upgrade your SRM version 5.8.1 see: VMware product interoperability Matrices

• Unknown status under ITA

  Hello world

  ITA recently reported 10 servers PE2950 in the unknown state under the Group of servers.  I tried to solve the problem by performing a discovery/inventory of the affected server, unfortunately, the problem persists.

  To resolve this problem, I run the troubleshooting tool and determined that ITA was unable to talk to my server via SNMP.  I restarted the SNMP service on one of the affected servers and then made a discovery/inventory to solve the problem (status is returned to the green).

  Around the same time, I met this "unknown status" issues I have restart my DNS server.  I'm not sure if it was the root cause of the problem, however, I can solve all hostnames after the DNS server has restarted including the 10 affected servers.

  Could you please help me with the following questions?

  -What is the cause of this problem?

  -Do you recommend an easier way to restore the functionality on the remaining servers of unknown status?

  Thank you in advance,

  D

  Message edited by ddasilva99 on 07/05/2008 20:41
  
  

• Communication of the IOM - SOA

  Hi all

  I try to configure the IOM and SOA with front-end OSH; After that the installation of the client of the IOM has changed the front-end server URL and the Port, so I need actulize all the parameters with the new FULL domain name.

  Now I can properly access the IOM and the SOA through the web layer, but when I try to view the "Inbox" page within IOM (like xelsysadm) I get this error message:

  Error display list of tasks. Possible reasons could be: 1. connection information for the server SOA are not available. 2 if it is running in Federated mode, the default server is maybe out of service.

  I tried to run in dashboard diagnostic checking Configuration of SOA - IOM, and after resolving all SSL issues now works correctly.

  IOM logs reports this error:

  [2015-04 - 02T 15: 05:58.115 + 02:00] [soa_server1] [NOTIFICATION] [] [oracle.soa.services.workflow.query] [tid: [ASSETS].] [ExecuteThread: '1' for the queue: "(self-adjusting) weblogic.kernel.Default"] [username: xelsysadm] [ecid: 0054fq3VmfQFw000jzwkno0001Yu000006, 1:24563] [APP: soa-infra] [URI: / identity/faces/home] < oracle.bpel.services.workflow.query.ejb.TaskQueryServiceBean.getWorkflowContext > in question using ejb session context: Principal is: xelsysadm, the identity is: xelsysadm

  [2015-04 - 02T 15: 05:58.117 + 02:00] [soa_server1] [ERROR] [] [oracle.soa.services.workflow.query] [tid: [ASSETS].] [ExecuteThread: '1' for the queue: "(self-adjusting) weblogic.kernel.Default"] [username: xelsysadm] [ecid: 0054fq3VmfQFw000jzwkno0001Yu000006, 1:24563] [APP: soa-infra] [URI: / identity/faces/home] <>. internal error in verification Service. [[

  Internal error in the Service of verification for the user xelsysadm. lookupUser.

  Check the underlying exception and fix the error. If the error persists, contact Oracle Support Services.

  ORABPEL-30504

  Internal error in verification Service.

  Internal error in the Service of verification for the user xelsysadm. lookupUser.

  Check the underlying exception and fix the error. If the error persists, contact Oracle Support Services.

  at oracle.bpel.services.workflow.verification.impl.VerificationService.lookupUser(VerificationService.java:4640)

  at oracle.bpel.services.workflow.verification.impl.VerificationService.createWorkflowContextFromSessionContext(VerificationService.java:1423)

  at oracle.bpel.services.workflow.verification.impl.VerificationService.createContextFromRequestObject(VerificationService.java:647)

  at sun.reflect.GeneratedMethodAccessor1273.invoke (unknown Source)

  ....

  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)

  at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)

  Caused by: ORABPEL-10509

  User not found.

  User "xelsysadm" is not in the configuration "jazn.com".

  Check if the user exists in the repository specified by configurations. Check the error stack and correct the cause of the error. Contact Oracle Support Services if the error is not repairable.

  at oracle.tip.pc.services.identity.jps.JpsProvider.lookupUser(JpsProvider.java:912)

  at oracle.tip.pc.services.identity.jps.AuthorizationServiceImpl.lookupUser(AuthorizationServiceImpl.java:254)

  at oracle.tip.pc.services.identity.jps.IdentityServiceImpl.lookupUser(IdentityServiceImpl.java:183)

  at oracle.bpel.services.workflow.verification.impl.VerificationService.lookupUser(VerificationService.java:4636)

  ... more than 78

  Caused by: oracle.security.idm.ObjectNotFoundException: No. User found matching the criteria

  at oracle.security.idm.providers.stdldap.util.DirectSearchResponse.initSearch(DirectSearchResponse.java:173)

  to oracle.security.idm.providers.stdldap.util.NonPagedSearchResponse. < init > (NonPagedSearchResponse.java:53)

  to oracle.security.idm.providers.stdldap.util.NonPagedSearchResponse. < init > (NonPagedSearchResponse.java:44)

  at oracle.security.idm.providers.stdldap.util.LDAPRealm.searchUsers(LDAPRealm.java:489)

  at oracle.security.idm.providers.stdldap.LDIdentityStore.search(LDIdentityStore.java:308)

  at oracle.security.idm.providers.stdldap.LDIdentityStore.searchUsers(LDIdentityStore.java:401)

  at oracle.tip.pc.services.identity.jps.JpsProvider.lookupUser(JpsProvider.java:896)

  ... more than 81

  ]]

  [2015-04 - 02T 15: 05:58.120 + 02:00] [soa_server1] [ERROR] [] [oracle.soa.services.workflow.task] [tid: [ASSETS].] [ExecuteThread: '1' for the queue: "(self-adjusting) weblogic.kernel.Default"] [username: xelsysadm] [ecid: 0054fq3VmfQFw000jzwkno0001Yu000006, 1:24563] [APP: soa-infra] [URI: / identity/faces/home] <>. error in creating reply message for Web Services. [[

  Error in creating reply message for Web Services.

  The entrance to Web Service may be invalid that causes this exception. Check the source of Web Service for accuracy. The entry could also be validated against the XML schema definition that describes the input for the operation. Whether it's valid, it is a system error.

  ORABPEL-30010

  Error in creating reply message for Web Services

  
  

  
  

  Any ideas?

  Thank you

  KK

  KK,

  You can check if oracle.as.soainfra.config-> workflowIdentityConfig-> workflowIdentityConfig.ConfigurationType->-> jpsContextName IOM?

• java.security.InvalidKeyException: illegal key size

  Hello
  
  I developed an application of adf using jdeveloper 11g how weblogic 10.3.3.0 hosts.
  My adf application must connect to an external application for credit card validation.
  To do this, I use a HTTPURLConnection and passing the external address and attributes that must be written into it.
  The external application that I am trying to connect is secure starts with https://...
  I get an error as soon I try to open the "connection.getOutputStream ()".
  Here is the error I get

  <Oct 8, 2010 10:32:54 AM CDT> <Notice> <Security> <BEA-090898> <Ignoring the trusted CA certificate "CN=T-TeleSec GlobalRoot Class 3,OU=T-Systems Trust Center,O=T-Systems Enterprise Services GmbH,C=DE". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.> 
  <Oct 8, 2010 10:32:54 AM CDT> <Notice> <Security> <BEA-090898> <Ignoring the trusted CA certificate "CN=T-TeleSec GlobalRoot Class 2,OU=T-Systems Trust Center,O=T-Systems Enterprise Services GmbH,C=DE". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.> 
  <Oct 8, 2010 10:32:54 AM CDT> <Notice> <Security> <BEA-090898> <Ignoring the trusted CA certificate "CN=GlobalSign,O=GlobalSign,OU=GlobalSign Root CA - R3". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.> 
  <Oct 8, 2010 10:32:54 AM CDT> <Notice> <Security> <BEA-090898> <Ignoring the trusted CA certificate "OU=Security Communication RootCA2,O=SECOM Trust Systems CO.\,LTD.,C=JP". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.> 
  <Oct 8, 2010 10:32:54 AM CDT> <Notice> <Security> <BEA-090898> <Ignoring the trusted CA certificate "CN=KEYNECTIS ROOT CA,OU=ROOT,O=KEYNECTIS,C=FR". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.> 
  java.security.InvalidKeyException: Illegal key size
       at javax.crypto.Cipher.a(DashoA13*..)
       at javax.crypto.Cipher.init(DashoA13*..)
       at javax.crypto.Cipher.init(DashoA13*..)
       at com.certicom.tls.provider.Cipher.init(Unknown Source)
       at com.certicom.tls.ciphersuite.SecurityParameters.createWriteCipher(Unknown Source)
       at com.certicom.tls.record.handshake.HandshakeHandler.changeCipherSpec(Unknown Source)
       at com.certicom.tls.record.handshake.ClientStateReceivedCertificate.handle(Unknown Source)
       at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessage(Unknown Source)
       at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessages(Unknown Source)
       at com.certicom.tls.record.MessageInterpreter.interpretContent(Unknown Source)
       at com.certicom.tls.record.MessageInterpreter.decryptMessage(Unknown Source)
       at com.certicom.tls.record.ReadHandler.processRecord(Unknown Source)
       at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source)
       at com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete(Unknown Source)
       at com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake(Unknown Source)
       at com.certicom.tls.record.WriteHandler.write(Unknown Source)
       at com.certicom.io.OutputSSLIOStreamWrapper.write(Unknown Source)
       at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:66)
       at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:124)

  Here is the code I use to connect to the external Web site.

      URL url;   
      HttpURLConnection connection = null;  
      try {     
        //Create connection   
        url = new URL(targetURL);  
        connection = (HttpURLConnection)url.openConnection();    
        connection.setRequestMethod("POST"); 
        connection.setRequestProperty("Content-Type", "application/x-www-form-urlencoded"); 
       connection.setRequestProperty("Content-Length", "" + Integer.toString(urlParameters.getBytes().length)); 
        connection.setRequestProperty("Content-Language", "en-US");   
        connection.setUseCaches (false);  
         connection.setDoOutput(true);  
         DataOutputStream wr = new DataOutputStream (       
             connection.getOutputStream ());
              wr.writeBytes (urlParameters);   
              wr.flush ();   
        wr.close ();    
              //Get Response    
        InputStream is = connection.getInputStream();   
        System.out.println("after getting input stream");
      BufferedReader rd = new BufferedReader(new InputStreamReader(is));   
        System.out.println("after BUffered reader");
      String line;   
      StringBuffer response = new StringBuffer();   
        System.out.println("after String buffer");
      while((line = rd.readLine()) != null) {      
        response.append(line);    
        response.append('\r');   
        }      rd.close();   
      return response.toString();
      } catch (Exception e) {  
        e.printStackTrace();    
        return null;  
        } finally {  
        if(connection != null) {       
          connection.disconnect();   
          }  
        } 
      }

  I am currently totally distraught, I don't understand what measures should I take. Is this error due to keystore stuff?
  I even tried to replace policy files in jre according to some articles, but it still does not work.
  I have very limited knowledge of the security issues with weblogic, I really will appreciate if I can get all the links or any help in this matter.
  
  Thanks in advance
  Ash

  You might find this useful

  http://WebLogic-wonders.com/WebLogic/2010/01/28/troubleshooting-SSL-issues/

• Lose connection Wireless at some site but when work around the site router works

  Original title: Wireless problems

  When I am connected to my wireless router, some sites such as who's who, I lose the internet connection. He said SSL issues.or CE NE MAY NOT BE THE SITE YOU ARE looking for "but when I bypass the router, the problem goes away. There are other laptop on the router there is NO problem. What can I do?

  Hello Dennis,.

  I'm sorry that you have a problem trying to connect to some Web sites.

  Just to make sure I understand your question, you lose the internet connection only to some Web sites, but if you unplug your router, you are able to connect to the website like Facebook without problem.

  Let's start with the basics on the wireless connection.
  -Make sure that the cables are properly connected to the router.
  -Restart your router, turn it off for 45 seconds and then turn it back on
  -Try again to connect to the problem site.
  -Update your drivers for your network card wireless

  Then I'd suggest that you update the firmware on your router. Go to the router manufacturer's website and download the latest version of the software package.

  Here is some information on the use of networks wireless that might be useful:
  http://Windows.Microsoft.com/en-us/Windows/help/wired-and-wireless-network-connection-problems-in-Windows

  If you still encounter a problem after trying the steps, answering the post again and I'll be happy to work with you for additional options.

  Sincerely,

  Marilyn

• Cannot start Node Manager

  Hi all
  I installed WLS 10.3.3 on windows. * 2 (jitu-pc, jitu-pc1) Managed Servers & 1 admin server on the same machine. *
  
  Here is the configuration of SSL for both:
  Verification of the name of the host = None
  
  Machine > Node Manager: Type = PLAIN
  
  When I try to start the node Manager ($BEA_HOME\server\bin\startNodeManager.cmd"I get error below):
  
  < 15 October 2010 04:11:33 > < INFO > < Secure socket listener started on port 5556 >
  October 15, 2010 04:11:33 weblogic.nodemanager.server.SSLListener run
  * INFO: Listener Secure socket started on port 5556. *
  < 15 October 2010 4:12:04 AM GMT + 05:30 > < WARNING > < security > < BEA-090476 > < invalid/unknown SSL header was received from peer 01HW165700.entcorp.ttsl.com - 172.17.43.84 during SSL handshake. >
  < 15 October 2010 4:12:04 AM GMT + 05:30 > < WARNING > < security > < BEA-090476 > < invalid/unknown SSL header was received from peer 01HW165700.entcorp.ttsl.com - 172.17.43.84 during SSL handshake. >
  < 15 October 2010 04:12:04 > < WARNING > < Eception in handlerjavax.net.ssl.SSLHandshakeException server exception: [Security: 090476] SSL invalid/unknown header has been received from the peer 01HW165700 - 172.17.43.84 during the SSL handshake. >
  javax.net.ssl.SSLHandshakeException: header [Security: 090476] invalid/unknown SSL has been received from the peer 01HW165700 - 172.17.43.84 during the SSL handshake.
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireException (unknown Source)
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireAlertSent (unknown Source)
  at com.certicom.tls.record.ReadHandler.fireAlert (unknown Source)
  at com.certicom.tls.record.ReadHandler.getProtocolVersion (unknown Source)
  at com.certicom.tls.record.ReadHandler.checkVersion (unknown Source)
  at com.certicom.tls.record.ReadHandler.readRecord (unknown Source)
  at com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete (unknown Source)
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake (unknown Source)
  at com.certicom.tls.record.ReadHandler.read (unknown Source)
  at com.certicom.io.InputSSLIOStreamWrapper.read (unknown Source)
  at sun.nio.cs.StreamDecoder.readBytes(StreamDecoder.java:264)
  at sun.nio.cs.StreamDecoder.implRead(StreamDecoder.java:306)
  at sun.nio.cs.StreamDecoder.read(StreamDecoder.java:158)
  at java.io.InputStreamReader.read(InputStreamReader.java:167)
  at java.io.BufferedReader.fill(BufferedReader.java:136)
  at java.io.BufferedReader.readLine(BufferedReader.java:299)
  at java.io.BufferedReader.readLine(BufferedReader.java:362)
  at weblogic.nodemanager.server.Handler.run(Handler.java:70)
  at java.lang.Thread.run(Thread.java:619)
  
  Can someone tell me what I'm missing?

  Hello

  Aside from the following a parameter more parameter is missing:
  1). checking the name of the host = None
  (2) machine > Node Manager: Type = PLAIN

  The most Important adjustment that you missed
  (3) open the file * "nodemanager.properties" * which is present inside *\common\nodemanager* and then change the "SecureListener" attribute "false" by default it being true will therefore do as below:
  SecureListener = false

  .
  .
  Thank you
  Jay SenSharma
  http://WebLogic-wonders.com (wonders are here)

• In Firefox 3.5.13 I can connect via SSL to my websites with a certificate from GoDaddy. When I connect with Firefox 3.6.11 is the unreliable connection because "the certificate of the issuer is unknown. 3.6 broken?

  There is no security exceptions in the 3.5.13 version. If I add an exception to 3.6.11 then I can display the certificate, but there is the message in the display of the certificate "Could not verify certificate for unknown reasons."

  This site does not send a required intermediate certificate.

  • http://www.Networking4all.com/en/support/tools/site+check/

• Issuer of the certificate that is unknown on Google, Facebook, Youtube and Twitter.

  Very well. I have tried to sync my time with time.is , uninstall Kaspersky, clear my Cookies and Cache, disabling IPV6 in topic: config, resettlement, refreshing, uninstall the extensions and contradictory and not updated addons, deleting the file db, defining "Not of Proxy" settings, disable Windows Firewall...

  ... And it is always the case:

  "The certificate is not approved because the certificate of the issuer is unknown. The server may not send the appropriate intermediate certificates. An additional root certificate should be imported. »

  "(Error code: sec_error_unknown_issuer).

  (Additional note: Google only works if http://www.google.com/?gws_rd=ssl is specifically typed without the S.)

  "Issued by parental control, OR Microsoft < is not part of the certificate >.

  I think I found my problem.

• When you access Intranet sites that use SSL certificates issued by our internal PKI, FF for Windows gives an error of "incorrectly put in the form of message coded DER"

  When to access Intranet sites who have the SSL certificates issued by our internal PKI, FF for Windows gives an error message - an error occurred when connecting to myshaw. Security Library: improperly formatted DER encoded message. (Error code: sec_error_bad_der)

  Chrome and IE work fine. This is a PKI again using the signature SHA-2 algorithm.

  I was able to identify the problem. Our public key infrastructure has been using some signature algorithms that FF did not support.

• My Firefox 15.0.1 cannot check all CA of SSL, it is said: "Cound not verify certificate for unknown reasons" when I find out the status of the certificate.

  Recently, I went to Windows 8 (from 7) and installed Firefox 15.0.1. Whenever I try to access a page secure HTTP I get a message that "this connection is untrusted. If I click on add exception and display the status of certificate I get the following message every time: "Cound not verify certificate for unknown reasons."

  I checked these sites in other browsers and they work fine. I also checked the certificates using this site: http://www.networking4all.com/en/support/tools/site+check/

  I tried to start firefox in compatibility mode of as and when that didn't help, I reinstalled it but nothing is changed. I use chrome for now but I hope that's not the only solution.

  What security (firewall, antivirus) software do you have?

  Some firewalls monitor secure connections (https) and send their own certificate instead of the certificate of the Web site.

  You can retrieve the certificate and check details such as WHO issued the certificates and the expiration dates of certificates.

  • Click on the link at the bottom of the error page: "I understand the risks".

  Let Firefox recover the certificate: "Add Exception"-> "get certificate".

  • Click on the "view..." button. "and inspect the certificate and the Coachman, who is the sender.

  You can see more details like the intermediate certificates that are used in the details pane.

• The host 'SMTP' could not be found. Please check that you have entered the server name correctly. _ subject 'Report issue', account: 'POP3', server: 'SMTP', Protocol: SMTP, Port: 25, secure (SSL): no, Socket error: 11001, error number: 0x800CCC0D

  The host 'SMTP' could not be found. Please check that you have entered the server name correctly.
  'Report issue', account: 'POP3', server: 'SMTP', Protocol: SMTP, Port: 25, secure (SSL): no, Socket error: 11001, error number: 0x800CCC0D.
  I'm answering an ad on craigslist and Windows Live continues to appear, but will not send my email I can be reached at * address email is removed from the privacy * or 614-499-1541.
  Thank you
  Stephen lawless

  Your post has nothing to do with Windows Update.

  You're not even close to have properly configured your e-mail account in Windows Live Mail.

  You will find support for Win7 e-mail Clients in this forum: http://social.answers.microsoft.com/Forums/en-US/w7network/threads

  You will find support for Windows Live Mail in this public newsgroup:
  http://www.Microsoft.com/communities/newsgroups/list/en-us/default.aspx?DG=Microsoft.public.Windows.live.mail.desktop

  Through your News Reader:
  News://msnews.Microsoft.com/Microsoft.public.Windows.live.mail.desktop

  ~ Robear Dyer (PA Bear) ~ MS MVP (that is to say, mail, security, Windows & Update Services) since 2002 ~ WARNING: MS MVPs represent or work for Microsoft

• Issue of SSL - EAS

  Hello

  I implemented SSL to web destination layer (OHS). I was able to validate everything, including the workspace, smartview and studio FR. But unfortunately, at the launch of the Regional of the web service, I get this error when connecting.

  

  I imported the intermediate certificates signed OHS, the root and in Java keystore on environmental assessments and Essbase servers. I don't see any errors in the web console EAS. Not sure where it goes wrong.

  I do not see errors if any easserver.log except for something like that.

  [2015 12-24 T 13: 09:37.256 - 07:00] [EssbaseAdminServices0] [WARNING] [ESSEAS-00100] [oracle.epm.essbase.eas] [tid: 32] [username: < anonymous >] [ecid: 0000L7Lb6mpBp2WjLxvH8A1MV3qE00002T, 0] [APP: SAE #11.1.2.0] unknown error has occurred. See the for more details [] stack trace below

  java.text.ParseException: date of: "0110".

  Kind regards

  RR.

  Just to add if you are not happy with the help of the url to directly access the jnlp then another option is:

  If windows open the registry on the computer of the EAS Editor, go to HKEY_LOCAL_MACHINE\SOFTWARE\Hyperion Solutions\EssbaseAdminServices0\HyS9eas_epmsystem1

  Add a new JVM option for example JVMOption50 with the value

  -DEAS_FE_URL =https://: 443

  Increment JVMOptionCount 1 and restart the windows EAS service.

  If on * nix then edit setCustomParamsEssbaseAdminServices.sh and add the parameter above.

  Which is pretty solutions, if all goes well, we'll be pretty good.

  See you soon

  John

• The SSO authentication: the SSL certificate is unknown

  Hello

  I'm trying to configure orchestrator solution to use SSO for authentication. Although the vCenter certificate is installed and displayed in the trust to SSL Manager, I get the following error:

  The SSL certificate is unknown. You can fix this in the SSL Certificate tab.

  Tried to reinstall the certificate, restart the device - without success. Username and password are correct.

  I use Version of the device: 5.5.0.0 build 1282845, vCenter 5.5.0, 1476327.

  How can I solve this problem?

  By "vCenter certificate is installed," do you mean Certificate SSL VC (imported from https://[vc-ip]:443)?

  For SSO authentication, you must also import the UNIQUE https://[sso-ip]:7444 authentication certificate

• This connection is untrusted; Unknown issuer

  The site is https://dvd.netflix.com. Me that chrome://pippki/content/exceptionDialog.xul Gets the message "the certificate is not reliable because it has not been verified as issued by a trusted authority with the help of a secure signature."

  The certificate has been issued by:

  CN = Symantec Class 3 Secure Server CA - G4
  UO = Symantec Trust Network
  O = Symantec Corporation
  C = US

  The validity dates are in the range (09/07/2015-10/07/2017) and my PC clock corresponds to my cell phone.

  How can I fix?

  Release of Firefox, deleting cert8.db in the profile and then folder by restarting Firefox seems to have solved the problem. (I found this in response to a post about a similar problem.