• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Resolved err_cert_authority_invalid on mobile chrome

Pascal_Netenvie

Pascal_Netenvie

Regular Pleskian
Hi,
We have an e-commerce website running on a plesk Server (Debian 8.4‬ with Plesk version 12.5.30 Update #37) and using an SSL Certificate from Comodo.

Only on mobile chrome we get this error : net::err_cert_authority_invalid

I found this article but it don't seems to be usable on Plesk.
Any solution ?

Regards.
 
Hi Pascal_Netenvie,

unfortunately, you don't provide informations which can be investigated. We don't know, if you included all necessary parts of your certificate ( cert, key, CA-bundle ). We don't know, which Comodo certificate you use.
Consider to recheck your certificate, consider to reformat the server certificate.


Information for a "PositiveSSL" Comodo certificate:

The following *.crt should be included in this order as a "CA-bundle" :

Domain.crt
COMODORSADomainValidationSecureServerCA.crt
COMODORSAAddTrustCA.crt
AddTrustExternalCARoot.crt
 
Hi UFHH01,
This certificate is named "COMODO RSA Domain Validation Secure Server CA"
We have reconfigured the certificate including the CA CRT file that was forgotten but error still here.
2 files were given to us (was a migration) : domain.crt and COMODORSACertificationAuthority.crt. Nothing else.

Where/how can i check order of crt files in bundle on the server ?
 
Last edited:
Thanks. I updated the CA Certificate with one downloaded from Comodo.
This is output of openssl command :

Code: 
CONNECTED(00000003)
depth=0 OU = Domain Control Validated, OU = PositiveSSL, CN = www.domain.fr
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 OU = Domain Control Validated, OU = PositiveSSL, CN = www.domain.fr
verify error:num=27:certificate not trusted
verify return:1
depth=0 OU = Domain Control Validated, OU = PositiveSSL, CN = www.domain.fr
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
0 s:/OU=Domain Control Validated/OU=PositiveSSL/CN=www.domain.fr
   i:/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Domain Validation Secure Server CA
1 s:/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Certification Authority
   i:/C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root
 
You must log in or register to reply here.

Similar threads

P
Question ERR_SSL_PROTOCOL_ERROR only witch Chrome
Replies
15
Views
2K
pablofrp
P
R
Question "This site can’t provide a secure connection" in Chrome and Edge
Replies
6
Views
4K
rcacciato
R
P
Question PHP 7.1 for old Magento 1.x site
Replies
11
Views
616
pvdv
P
marvin
Issue IMAP requires security certificate? Maybe?
2 3
Replies
40
Views
4K
Peter Debik
P
Hangover2
Forwarded to devs SSL It! breaks renewal and usage of Let's Encrypt wildcard certificates when subdomains are involved
2
Replies
28
Views
6K
marcoherzog
M
Back
Top