Help thread for DST Root CA X3 expiration (September 2021)

RealTimeData · October 1, 2021, 2:06pm

Yes, some Firewalls are taking issue with the Multiple Certificate Chain/Paths.

For example Qualys SSL Server Test even shows Certification Path #2 for community.letsencrypt.org with the Expired Certificate. For this reason some Firewalls that perform SSL Scanning (Proxying) take issue.

https://www.ssllabs.com/ssltest/analyze.html?d=community.letsencrypt.org&s=2602%3Afd3f%3A3%3Aff01%3A0%3A0%3A0%3Aca&hideResults=on

See "Certification Paths" -> "Path #2: Not trusted (invalid certificate [Fingerprint SHA256: 0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739])"

For Sophos UTM/SG Firewalls see: Service and Support

Topic		Replies	Views
IdenTrust DST Root CA X3 expiry Help	18	5287	November 6, 2021
Broken links on doc page for DST Root CA X3 Expiration Site Feedback	7	2355	May 9, 2021
Feedback wanted: DST Root CA X3 expiration all-subscriber email Issuance Tech	14	3039	May 6, 2021
Expiration or revokation of DST Root CA X3 Help	4	4052	January 1, 2018
Expiration of DST Root CA X3 and Ingenico POS Help	21	1933	October 24, 2021

Help thread for DST Root CA X3 expiration (September 2021)

Related topics