It's possible in certain upgrade scenarios that the certs have been permanently blacklisted on your system.
Look at the /etc/ca-certificates.conf file to see if the following two lines start with a "!" character: mozilla/GeoTrust_Primary_Certification_Authority_-_G2.crt mozilla/VeriSign_Universal_Root_Certification_Authority.crt If they do begin with "!", you need to reconfigure ca-certificates with: sudo dpkg-reconfigure ca-certificates That should ask you which certificates to activate. Make sure those two are checked. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1913951 Title: ca-certificates: Symantec CA blacklisted for non-TLS uses To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ca-certificates/+bug/1913951/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
