tag:infinitekind.tenderapp.com,2009-01-14:/discussions/online-banking/19740-first-tech-no-trusted-certificate-foundInfinite Kind: Discussion 2023-05-16T19:39:36Ztag:infinitekind.tenderapp.com,2009-01-14:Comment/494280122021-10-23T03:39:22Z2023-05-16T19:39:35ZFirst tech: No trusted certificate found<div><p>I've had the same trouble for a few weeks now running build number 3095. Fortunately, my trusty build 1706 still works for downloading from First Tech. Then I close that and run a newer version for the new features. This is easy to do with Docker containers. Fortunately, the database schema is compatible between 1706 and even the latest 4057 build.</p>
<p>I updated my Ubuntu 20.04 base image and installed the very latest MoneyDance build 4057 tonight and my First Tech accounts still failed to download. I exec'ed into the container and used curl to POST to <a href="https://ofx.firsttechfed.com">https://ofx.firsttechfed.com</a> and didn't get a certificate failure. With "curl -vvv ...", I was told that the TLS certificate was issued by Let's Encrypt. This was what I expected given that their root certificate expired on September 30th. The console even reported "Expired certificate: certs/lets_encrypt_authority_x3.cer". I couldn't find that file anywhere in my container's file system so I suspect that it's somehow built into MoneyDance. I also see in the console log: "using internal https+certificate checking". I suspect that we're stuck until Infinite Kind fixes this.</p></div>mustangtag:infinitekind.tenderapp.com,2009-01-14:Comment/494280122021-10-24T20:54:28Z2023-05-16T19:39:35ZFirst tech: No trusted certificate found<div><p>I got excited when I saw build 4058 available so I downloaded and installed it into a Docker container image. I still get the same "No trusted certificate found" error.</p></div>mustangtag:infinitekind.tenderapp.com,2009-01-14:Comment/494280122021-12-09T03:40:11Z2023-05-16T19:39:35ZFirst tech: No trusted certificate found<div><p>The latest preview build 4063 still hasn't fixed the problem I've been having with downloading transactions from First Tech. I can see that it has some changes to the SSL certificates but that's apparently not enough to do the trick.</p>
<p>As with the last problem I had between Moneydance and First Tech, this ought to be fixable, after all, the trusty build 1706 functions just fine for downloading transactions. I'm happy to provide whatever details are needed to help the team get this working again.</p></div>mustangtag:infinitekind.tenderapp.com,2009-01-14:Comment/494280122021-12-09T12:04:20Z2021-12-10T09:36:47ZFirst tech: No trusted certificate found<div><p>Hi,</p>
<p>We are sorry to hear about the problem you have encountered.</p>
<p>If you haven't already, you should try to recreate the connection with your bank. You will need to disable your current connection and then recreate it using the New Connection button on the Online Banking Setup screen. To do so, you can follow these steps:</p>
<ol>
<li>Select your bank account in Moneydance
<br></li>
<li>Select Online --> Setup Online Banking<br></li>
<li>Click the "Disable" button. If you don't see this button, just close the window.
<br></li>
<li>Repeat the previous steps for any additional accounts at the same institution.<br></li>
<li>Select Online --> Setup Online Banking (again)
<br></li>
<li>Click the "New Connection" button and select your bank and hit OK<br></li>
<li>Continue with the setup process, entering your username/password
</li>
</ol>
<p><strong>Make sure you pick "New Connection"</strong>, even though your bank is still one of the connection choices after you disable it. Choosing your bank from the long list of available banks will force Moneydance to download the updated information, which should then allow you to connect.</p>
<p>Please let us know if you continue to have connection problems after recreating your connection and we'll troubleshoot further.</p>
<hr>
<p>If the problem persists, could you send us the contents of your error console? Here's how to get the logs:</p>
<p>1) In Moneydance, click on the Help menu and select the Console Window option. This will open the console messages window.<br>
2) While the Console Window is open, attempt to connect to your bank. Any error messages should be recorded to the Console.<br>
3) Select all of the text in the Console and use the "Copy to Clipboard" button at the bottom to copy the text.<br>
4) Paste the text from the message window into a text file (preferably saved with a .txt extension) and attach that file to your response <a href="https://infinitekind.tenderapp.com/discussions/online-banking/19740-first-tech-no-trusted-certificate-found">here</a>.</p>
<p>Thank you</p>
<p>--<br>
Maddy, Infinite Kind Support</p></div>Maddytag:infinitekind.tenderapp.com,2009-01-14:Comment/494280122021-12-10T04:06:18Z2023-05-16T19:39:36ZFirst tech: No trusted certificate found<div><p>Hi Maddy.</p>
<p>I highly appreciate you getting back to me.</p>
<p>I tried the procedure you outlined and didn't encounter any trouble<br>
until step 7. To be honest, I didn't disconnect all of the accounts<br>
because I have something like ten of them at First Tech. If that really<br>
makes a difference, I'll do it with a copy of my data so I don't have to<br>
reconnect all of them again.</p>
<p>During step 7 after I chose the account from the list, I hit the Next<br>
button and got an error dialog. I dismissed that and selected the Online<br>
Banking account from the drop-down list in the next window and hit Next<br>
then Finish. Then I told it to download transactions for that one<br>
account and encountered another error dialog. I copied the text from<br>
both of the error dialogs into the attached Zipped text file. After<br>
that, I pasted the text copied from the console window into the text file.</p>
<p>After that, I closed Moneydance then started build 1706 with the same<br>
data files. I was able to successfully download a couple of new<br>
transactions from the account.</p>
<p>Thanks again and please let me know if there's anything else I can<br>
provide to get to the bottom of this problem.</p>
<p>--Dan</p></div>mustangtag:infinitekind.tenderapp.com,2009-01-14:Comment/494280122022-01-14T03:38:54Z2022-01-14T03:39:00ZFirst tech: No trusted certificate found<div><p>I managed to fix this issue by myself by replacing the expired root cert inside moneydance.jar. Since Infinite Kind is too busy to fix the issue, I'm posting the solution here so technical savvy folks could take the matter into their own hands.</p>
<ol>
<li>Visit <a href="https://ofx.firsttechfed.com/">https://ofx.firsttechfed.com/</a>, download the root cert or the intermediate cert file in DER/.cer format from that endpoint. I downloaded the intermediate cert.<br></li>
<li>Unzip moneydance.jar<br></li>
<li>Replace <code>certs/lets_encrypt_authority_x3.cer</code> with the downloaded cert.<br></li>
<li>Zip to recreate the moneydance.jar with the replaced cert.<br></li>
<li>Replace the jar.</li>
</ol></div>Alex Mantag:infinitekind.tenderapp.com,2009-01-14:Comment/494280122022-01-23T01:53:21Z2023-05-16T19:39:36ZFirst tech: No trusted certificate found<div><p>Thanks so much Alex! That's the clue I needed to get this working again for me. My trusty build 1706 finally stopped working with the same missing certificate error so I had to do something else. Since I install Moneydance into a Docker container image, I went through the process of creating an updated DEB file. What a relief this is!</p></div>mustangtag:infinitekind.tenderapp.com,2009-01-14:Comment/494280122022-01-23T13:47:28Z2022-01-23T13:47:28ZFirst tech: No trusted certificate found<div><p>I'd also like to thank you Alex for tracking down the issue. I've added the root CA for the Let's Encrypt authority to the list of trusted certificates for the next update to Moneydance. I'm surprised that multiple banks are now using Let's Encrypt for their servers, but it's given be a reason to clean up our CA certificates too.</p>
<p>Thanks,<br>
Sean</p>
<p>--<br>
Sean Reilly<br>
Developer, The Infinite Kind<br>
<a href="https://infinitekind.com">https://infinitekind.com</a></p></div>Sean Reilly