• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:
    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Resolved err_cert_authority_invalid on mobile chrome

Pascal_Netenvie

Pascal_Netenvie

Regular Pleskian
Hi,
We have an e-commerce website running on a plesk Server (Debian 8.4‬ with Plesk version 12.5.30 Update #37) and using an SSL Certificate from Comodo.

Only on mobile chrome we get this error : net::err_cert_authority_invalid

I found this article but it don't seems to be usable on Plesk.
Any solution ?

Regards.
 
Hi Pascal_Netenvie,

unfortunately, you don't provide informations which can be investigated. We don't know, if you included all necessary parts of your certificate ( cert, key, CA-bundle ). We don't know, which Comodo certificate you use.
Consider to recheck your certificate, consider to reformat the server certificate.


Information for a "PositiveSSL" Comodo certificate:

The following *.crt should be included in this order as a "CA-bundle" :

Domain.crt
COMODORSADomainValidationSecureServerCA.crt
COMODORSAAddTrustCA.crt
AddTrustExternalCARoot.crt
 
Hi UFHH01,
This certificate is named "COMODO RSA Domain Validation Secure Server CA"
We have reconfigured the certificate including the CA CRT file that was forgotten but error still here.
2 files were given to us (was a migration) : domain.crt and COMODORSACertificationAuthority.crt. Nothing else.

Where/how can i check order of crt files in bundle on the server ?
 
Last edited:
Thanks. I updated the CA Certificate with one downloaded from Comodo.
This is output of openssl command :

Code: 
CONNECTED(00000003)
depth=0 OU = Domain Control Validated, OU = PositiveSSL, CN = www.domain.fr
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 OU = Domain Control Validated, OU = PositiveSSL, CN = www.domain.fr
verify error:num=27:certificate not trusted
verify return:1
depth=0 OU = Domain Control Validated, OU = PositiveSSL, CN = www.domain.fr
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
0 s:/OU=Domain Control Validated/OU=PositiveSSL/CN=www.domain.fr
   i:/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Domain Validation Secure Server CA
1 s:/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Certification Authority
   i:/C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root
 
You must log in or register to reply here.

Similar threads

llucas
Question SSL in APP Mobile Certificate is not valid
Replies
4
Views
302
llucas
llucas
P
Question ERR_SSL_PROTOCOL_ERROR only witch Chrome
Replies
15
Views
3K
pablofrp
P
R
Question "This site can’t provide a secure connection" in Chrome and Edge
Replies
6
Views
5K
rcacciato
R
R
Issue SSL/TLS cert for mail server not updating (Lets Encrypt)
Replies
2
Views
986
tessa67
T
P
Question PHP 7.1 for old Magento 1.x site
Replies
11
Views
1K
pvdv
P
Back
Top