Firefox iDrac Certificate Problem: sec_error_reused_issuer_and_serial
I found I can no longer use Firefox to access my iDrac page after upgrading the iDrac 6 firmware to latest v1.85.
The particular message is “sec_error_reused_issuer_and_serial”.
Googled it a bit, removed cert8.db and key3.db, some iDrac page worked, some doesn’t as the old and new iDrac cert shares the same digital signature.
Finally, found this from the iDrac 6 v1.85 release note:
* iDRAC default certificate expire date changed to 2023, to get this updated certificate clear the “Preserve Configuration flag” option while updating iDRAC firmware through GUI. Make sure you delete cache from the GUI (IE as well as Firefox).
Firefox web browser might encounter an error if the certificate contains the same serial number as another certificate. Use this ink or the following procedure to resolve the same.
Workaround:
Delete your old exception and use temporary exceptions for subsequent visits to the iDRAC page.
To delete your old exception:
1. On the Firefox window, click the “Firefox” button and then click “Options.”
For Windows XP, click Tools and then “Options.”
For Linux OS, click “Edit” and then “Preferences.”2. Select the “Advanced” panel.
3. Click on the Encryption tab.
4. Click “View Certificates” to open the Certificate Manager window.
5. In the Certificate Manager window click the “Servers” tab.
6. Identify the item that corresponds to the site that generates the error.
Note: The Certificate Authority (CA) for that server – the CA name appears above the site name.7. Click on the server certificate that corresponds to the site that generates the error and press “Delete.”
8. Click OK when prompted to delete the exception.
9. Click the “Authorities” tab and select the the item that corresponds to the CA that you noted earlier and then press “Delete.”
10.Click OK when prompted to delete the exception.
To add a temporary exception to allow access to the page:
When you go to the iDRAC page, you will be presented with an Untrusted error.
Click on the “I Understand the Risks” link at the bottom of the error,
Click on Add Exception… to open the Add Security Exception window.
Click Get Certificate to fill in the Certificate Status section of the Add Security Exception window.
Click to un-check the Permanently store this exception item.
Click Confirm Security Exception to close the Add Security Exception window.The iDRAC page will load now.
Thank you! After several months of frustration and on-and-off google searching you just solved my issue.
Excellent!!!
Just got to remember on connecting to each iDRAC for the first time after the above workaround to deselect the Permanently store this exception item.