It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Login Sign Up Contact & Support

United States – English (GMT-5)

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud-to-Cloud Backup

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Web Security Agent

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

Reporting Server

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Firewall Policy Manager

RMM (Managed Workplace)

Managed PhishLine

Intronis Backup

MSP Knowledgebase

MSP – Sales Enablement

NextGen Firewall X

Campus Help Center / Reference

TechSummit 2019

Support Services

Network Security

Barracuda Web Application Firewall

Overview Documentation Training Certification Materials

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud-to-Cloud Backup

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Web Security Agent

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

Reporting Server

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Firewall Policy Manager

RMM (Managed Workplace)

Managed PhishLine

Intronis Backup

MSP Knowledgebase

MSP – Sales Enablement

NextGen Firewall X

Campus Help Center / Reference

TechSummit 2019

Support Services

Network Security

Login Sign Up Contact & Support

United States – English (GMT-5)

Back to Knowledgebase

Why do I receive the error ?Issuer of the certificate cannot be trusted?, when accessing a web page behind the Barracuda Web Application Firewall?

Type: Knowledgebase
Date changed: 2 years ago

Solution #00003978

Scope:

All Barracuda Web Application Firewalls, all firmware versions.

Answer:

This error is usually seen if the web site is using a self signed certificate or if the browser is unable to verify the trusted chain in a signed certificate.

A signed certificate is a certificate obtained form a third-party certificate authority, like Verisign or Thawte. When a certificate authority signs a certificate they send their signed certificates back, in a package or individually. All of the certificates received from the CA need to be installed on the Barracuda Web Application Firewall. If one of the certificates is missed, the trust chain is considered incomplete.

If a signed certificate was uploaded without the intermediary certificate, you will need to combine the intermediate and root certificates into one .pfx file, and upload it to the Barracuda Web Application Firewall. If you loaded the certificate and the certificate key separately, you will only need to upload the intermediate certificate (*.pem format).

Signed certificates can be loaded to the Barracuda Web Application Firewall from the BASIC > Certificate > Upload Certificate section.

Link to This Page:
https://campus.barracuda.com/solution/50160000000HaTJAA0

Additional Resources

More

Print Share Page