Comment 11 for bug 1014640

SeanBoran (sean-boran) wrote :

Fix:

Verisign's 2009 ROOT certificate is missing, so download it an install it.

1) Copy the Root CA from Symantec: https://knowledge.verisign.com/support/ssl-certificates-support/index?page=content&id=AR1556

2) Save to a file like verisign2009.crt in "/usr/local/share/ca-certificates/"
$ sudo vi /usr/local/share/ca-certificates/verisign2009.crt

3) Update the certificate stor
$ sudo update-ca-certificates

Now all of the above https site work fine, at least on 12.04.

The procedure is same for any custom CA certs that one needs to add. /usr/local/share/ca-certificates/ is normally empty.