ERR_SSL_PROTOCOL_ERROR on an existing app?

paulnakata · July 11, 2021, 9:25pm

We have been up and running for months with our Auth0 setup, but yesterday we lost the ability to sign in to our site with Auth0.

In multiple browsers, on multiple devices, we’re getting

This site can’t provide a secure connection
**oursiteeurl.us.auth0.com** sent an invalid response

Trying to test in the Auth0 website gives us the same result. I’m not sure how to troubleshoot this, it looks like an Auth0 issue from our side, but there aren’t any errors in any logs that I can find.

paulnakata · July 11, 2021, 9:27pm

Firefox reports the error as “SSL_ERROR_RX_RECORD_TOO_LONG”, if that’s helpful.

mass.shock57 · July 12, 2021, 1:03am

Multiple devices is safe way

sidharth.chaudhary · July 12, 2021, 5:45am

Hey @paulnakata ,

Which client you are using to make login requests to Auth0?
Are you using TLS v1.2 and above SSL protocol for making requests?

Regards,
Sidharth

paulnakata · July 12, 2021, 2:54pm

@sidharth.chaudhary we use the Auth0 login box. If I log in to the Auth0 portal, click “Getting Started”, then click “Try it out” under “Try your login box”, I get the same error.

We redirect from our website to Auth0 for social login. If you go there and click “Log in” or “Try it Free” you’ll see the same behavior.

paulnakata · July 12, 2021, 6:01pm

This ended up being an issue with XFinity. For some reason, they began blocking our Auth0 subdomain. Sorry for the noise!

In case someone finds this via a search in the future: the issue is with Xfinity “xFI Advanced Security”. There is no way to whitelist domains, so you will have to turn it off completely. I followed these steps from the Xfinity mobile app to disable it: Use Xfinity xFi Advanced Security - Xfinity Support

sidharth.chaudhary · July 13, 2021, 3:13am

Thanks for letting us know!

konrad.sopala · July 13, 2021, 9:44am

If you have any other questions down the road, let us know!

markfilan · February 1, 2022, 10:13am

When a browser shows the Err_ssl_protocol_error, it indicates the browser is no longer able to access or initiate the secured communication. There is no definite guide for managing this error. Follow given steps to resolve this error from Client side:

Try correcting the system date and time.
Try clearing Google Chrome browsing data.
Try clearing your SSL State.
Try disabling the QUIC Protocol.
Try checking your antivirus settings.
Try enabling all SSL/TLS versions.

Also, this error is because of the following server side problems:

Invalid SSL or SSL is untrusted (self-signed)
SSL Not installed properly
Old Technology or SSL/TLS version for encryption

konrad.sopala · February 3, 2022, 1:39pm

Thanks for sharing that with the rest of community!

system · February 18, 2022, 1:40pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.