Problems with Security Certificate

Blog
1

If you experience problems connecting to our website, forums, or our apps fail checking your license code with our backend, you might see an error message like this one:

*.devontechnologies.com
Issued by: Sectigo Public Server Authentication CA DV R36
Expires: Sunday, 13 September 2026 at 01:59:59 Central European Summer Time
"Sectigo Public Server Authentication Root R46" certificate is not trusted.

To fix this problem, you can add the missing root certificate yourself by downloading it from a trusted source like TBS Certificates (hover over the link to verify that the link leads to the correct page):

https://www.tbs-certificates.co.uk/FAQ/en/SectigoPublicServerAuthenticationRootR46_USERTrust.html

Install it into the keychain by double-clicking the downloaded file. Now connecting to all our domains should be working again.

Background: Last week we updated the SSL/TSL security certificate — they expire every 365 days — on all our domains including our backend services. This new certificate is based on the Sectigo Public Server Authentication Root R46 root certificate, issued in 2021. These root certificates come preinstalled with the operating system but, of course, might not be available on older systems unless they got installed by other means. Also, it also seems to be missing on newer installations, for unknown reasons.

4 Likes
Why am I getting this error when trying to activate DT?
Safari refuses to visit DEVONtechnologies Website
DTP Markdown Capture Problem
... section (Tips/Tricks)(Scripts)(Templates)(Smart Rules
Activate License DT4
2

Apparently, this problem may be caused by a misconfiguration on the server side because of missing or wrong certificate chain. The error message is seen with different client machines or web hosting sites and networks, not only from my tt-rss installation. For comments from ChatGPT see: ChatGPT - RSS Feed Certificate Error

3

This issue is not universal, i.e., not every machine has been affected. If every machine connects to the same server, all of them should equally be affected.

PS: ChatGPT is not authoritative, especially on matters of “opinion”. No AI is.

1 Like
4

EDIT: Actually, it depends on the openssl library. Outdated versions such as v.1.1.0 (Debian 11 or older) will not connect, but no problem with later versions (v.3). I will have to ask my hosting provider to upgrade. Thanks for your help.

5

How is a missing certificate related to the openSSL version? This makes not a lot of sense.