• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.

Resolved err_cert_authority_invalid on mobile chrome

Pascal_Netenvie

Pascal_Netenvie

Regular Pleskian
Hi,
We have an e-commerce website running on a plesk Server (Debian 8.4‬ with Plesk version 12.5.30 Update #37) and using an SSL Certificate from Comodo.

Only on mobile chrome we get this error : net::err_cert_authority_invalid

I found this article but it don't seems to be usable on Plesk.
Any solution ?

Regards.
 
Hi Pascal_Netenvie,

unfortunately, you don't provide informations which can be investigated. We don't know, if you included all necessary parts of your certificate ( cert, key, CA-bundle ). We don't know, which Comodo certificate you use.
Consider to recheck your certificate, consider to reformat the server certificate.


Information for a "PositiveSSL" Comodo certificate:

The following *.crt should be included in this order as a "CA-bundle" :

Domain.crt
COMODORSADomainValidationSecureServerCA.crt
COMODORSAAddTrustCA.crt
AddTrustExternalCARoot.crt
 
Hi UFHH01,
This certificate is named "COMODO RSA Domain Validation Secure Server CA"
We have reconfigured the certificate including the CA CRT file that was forgotten but error still here.
2 files were given to us (was a migration) : domain.crt and COMODORSACertificationAuthority.crt. Nothing else.

Where/how can i check order of crt files in bundle on the server ?
 
Last edited:
Thanks. I updated the CA Certificate with one downloaded from Comodo.
This is output of openssl command :

Code: 
CONNECTED(00000003)
depth=0 OU = Domain Control Validated, OU = PositiveSSL, CN = www.domain.fr
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 OU = Domain Control Validated, OU = PositiveSSL, CN = www.domain.fr
verify error:num=27:certificate not trusted
verify return:1
depth=0 OU = Domain Control Validated, OU = PositiveSSL, CN = www.domain.fr
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
0 s:/OU=Domain Control Validated/OU=PositiveSSL/CN=www.domain.fr
   i:/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Domain Validation Secure Server CA
1 s:/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Certification Authority
   i:/C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root
 
You must log in or register to reply here.

Similar threads

llucas
Question SSL in APP Mobile Certificate is not valid
Replies
4
Views
845
llucas
llucas
JerryTek101
Issue AtomicCorp Advanced Mod Security ruleset not installing latest rules - Debian 12 - Version 18.0.67
Replies
2
Views
1K
Sebahat.hadzhi
Sebahat.hadzhi
M
Issue Let's Encrypt Bulk Domain Renewal
Replies
4
Views
746
MacGyver
M
P
Question ERR_SSL_PROTOCOL_ERROR only witch Chrome
Replies
15
Views
3K
pablofrp
P
V
Issue Plesk SSL certificate clear
Replies
1
Views
416
Sebahat.hadzhi
Sebahat.hadzhi
Back
Top