Skip to content

Choose your language

  • No results

Choose your login

  • No results
Support

How can we help?

PaperCut's AI-generated content is continually improving, but it may still contain errors. Please verify as needed.

Lightbulb icon
Lightbulb icon

Here’s your answer

Sources:

* PaperCut is constantly working to improve the accuracy and quality of our AI-generated content. However, there may still be errors or inaccuracies, we appreciate your understanding and encourage verification when needed.

Lightbulb icon

Oops!

We currently don’t have an answer for this and our teams are working on resolving the issue. If you still need help,
User reading a resource

Popular resources

Help center

FAQs
Conversation bubbles

Contact us

Browser Certificate Warnings and Errors

THE PAGE APPLIES TO:

PaperCut NG product logo PaperCut MF product logo PaperCut Pocket product logo PaperCut Hive product logo

Last updated April 15, 2026

PaperCut automatically generates an SSL/HTTPS certificate during the install process. This certificate is subsequently used to encrypt sensitive data, and to secure the HTTPS based web access. Web browsers may however raise the following warnings about the certificate:

  1. The certificate is not signed or can’t be validated by a trusted authority.
  2. The certificate name does not match the server/host name.

The 1st error occurs because the certificate is self-signed (not signed by an external authority). This means that the user will need to manually accept the certificate, or alternatively add it to the browsers trusted servers list. Organizations using Active Directory and Group Policies may find the following web article on deploying a certificate via group policy useful. An alternate approach is to replace the self-signed key with an officially signed key. This is an advanced process and detailed in Appendix A.

The 2nd error does not usually occur as PaperCut will automatically detect the hostname and generate a certificate to match. It may however occur if the server is externally accessed via alternate name, such as a fully qualified name. The name mismatch warning can be fixed by regenerating the certificate as detailed in Appendix A.

Certificate Expired Warnings

The default self-signed certificate generated by PaperCut on installation has an expiration date set 9999 years in the future. So it will not expire. If you are receiving a certificate expired warning when accessing PaperCut you must have installed a custom certificate which has now expired. Custom certificates signed by official signing authorities typically have a 1 year expiration period, so they must be renewed yearly and re-installed into PaperCut.

To fix these warning messages you will need to renew your certificate with your certificate authority, and install the new certificate as described in the SSL key generation section in the manual.

UTC And Long Self-signed Certificates

Some printers flag long self-signed certificates (for example, 9,999 days) as invalid. This issue relates to how systems handle Coordinated Universal Time (UTC) and is known as the “Certificate Y2K20 Bug”. For more details, refer to Red Hat article on the Certificate Y2K20 Bug.

UTC uses a two-character year format (YYMMDDHHMMSS). The system interprets these years as follows:

  • Years under 50 are interpreted as 20YY.
  • Years 50 or above are interpreted as 19YY.

For example, a certificate expiring on 26 June 2050 is interpreted as 26 June 1950, making it appear to have expired over 70 years ago.

Troubleshooting UTC Certificate Errors

PaperCut includes safeguards for this issue, but if the embedded application fails to install on a printer, first verify the certificate is valid.

PaperCut MF Application Server (debug) logs may show this error: HTTP transport error: javax.net.ssl.SSLHandshakeException: Failed to parse server certificates

Resolving The Issue

Create self-signed certificates with expiry dates no later than 31 December 2049.

Category: Troubleshooting Articles

Subcategory: Security and Privacy, User Interface

Keywords: IE browser error, Firefox warning

Comments