Hi everyone! I installed Fedora 35 on my laptop a few days ago and the experience has been fantastic overall. However, I’ve ran into a problem while trying to add my online accounts. When I sign in with my Google or Microsoft account, the message “Unacceptable TLS certificate” appears. I have been trying to find a way to fix it but I haven’t found anything. I did a little bit of research and I reinstalled ca-certificates but it didn’t solve the problem.
This could be a sign that you are behind a proxy.
Or your traffic is filtered and redirected somewhere upstream.
To isolate the issue, try enabling DoT and using a VPN.
Could you run this command? echo | gnutls-cli -d 1 accounts.google.com -p 443 | fpaste
(It performs a connection to accounts.google.com then will paste the output to a pastebin service). Just to check if the problem is somewhat system wide or limited to GNOME Online Accounts.
I have everything up to date with GNOME Software. I ran into this issue just after the first boot, with a clean installation, which seems really weird to me.
By the way, I also have a problem with GNOME extensions. I have the browser extension and chrome-gnome-shell installed but the page says that native host connector is not detected. I don’t know if these two issues can be related in any way. If not, I plan to elaborate on that issue in another thread.
No. As far as I know, it simply allow to accept keys and certificates (i.e. for ssh and https) that are still using older (and sometimes deprecated) encryption algorithms.
The weird thing however is that GNOME Online Accounts works for me without setting such crypto policy to legacy.