Thank you for your feedback

The site's security certificate is not trusted! What does this mean?

The Problem

When you're logging on to the app you may be presented with the following message:

 

The message itself explains why you're seeing this error, but that the app certificate is completely valid and secure, so you shouldn't see this message at all.

We use the highest level of certificate authentication available from the most trusted SSL certification authority - VeriSign, so we can guarantee security when dealing with your data. When logging on to a website featuring the highest level certificate you will notice a green bar next to the web address, which gives a quick sign that the website is trusted:

 

The Cause

Crunch clients who may receive this message are those who are currently running an older version of Apple's Mac OS X (before 10.6.8) or Linux and using either Google Chrome or Apple Safari browsers.

The problem is caused by the fact that before version 10.6.8, Apple did not include the certificate we use in the default keychain of their OS X. If you were to use Firefox, the certificate may be downloaded and saved as trusted in the keychain, but unfortunately Chrome and Safari do not currently offer this capability.

Alternatively, if you're using a Linux operating system, such as Ubuntu, you may encounter this error as Google Chrome makes use of the NSS Shared database from Mozilla, which doesn't contain the VeriSign certificates.

Another cause could be that your PC's date could be wrong and thus may be outside of the security certificate's valid date, but this would have to be a year or so wrong to cause the above error.

 

The Solution for Mac Users

In order to avoid this problem in the future you could update Mac OS X to the latest version.

If you wish to keep using your current operating system, you will need to manually download the certificate to your keychain. To do this you will have to download the two files attached to this topic (at the bottom), which are both certificates signed by VeriSign. Once these .crt files are downloaded (ensuring they stay as .crt files), simply double click to add them to the keychain. Then restart the computer.

 

The Solution for Linux Users

To add the certificates to the database in Linux follow these steps:

  1. Firsty open the command line and install two tools you will need for step two:
    sudo apt-get install libnss3-tools
    sudo apt-get install curl
  2. Now do the following to add CAcert Certificates to the database:
    curl -k -o "cacert-root.crt"   "http://www.cacert.org/certs/root.crt"
    curl -k -o "cacert-class3.crt" "http://www.cacert.org/certs/class3.crt"
    certutil -d sql:$HOME/.pki/nssdb -A -t TC -n "CAcert.org" -i cacert-root.crt 
    certutil -d sql:$HOME/.pki/nssdb -A -t TC -n "CAcert.org Class 3" -i cacert-class3.crt
  3. Then restart your computer.
  4. You'll now be able to access the app with no certification warnings.

 

Attached Files for Mac Users:

Last Updated: 08 Jul 2015 04:44PM BST

Related Articles

No articles found

https://cdn.desk.com/
false
desk
Loading
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
about
false
Invalid characters found
/customer/en/portal/articles/autocomplete