help menu

Join us on the Community Forums!

  • Community Guidelines

    The Fitbit Community is a gathering place for real people who wish to exchange ideas, solutions, tips, techniques, and insight about the Fitbit products and services they love. By joining our Community, you agree to uphold these guidelines, so please take a moment to look them over.

  • Learn the Basics

    Check out our Frequently Asked Questions page for information on Community features, and tips to make the most of your time here.

  • Join the Community!

    Join an existing conversation, or start a new thread to ask your question. Creating your account is completely free, and takes about a minute.

Not finding your answer on the Community Forums?

Cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Cert problem

‎10-31-2021 15:41

‎10-31-2021 15:41

Certificates for internal fitbit sites have an issue.  Perhaps they expired?  I didn't dig hard enough to see if it was the Lets Encrypt issues from earlier this month.  Once I discovered that https websocket connections were failing, I lost interest in chasing the problem further.

 

This is causing problems connecting to the developer portal, along with issues with connecting to Pandora

 

https://https://035-v3-client.fitbit.com/

 

Someone could be trying to impersonate the site and you should not continue.

Websites prove their identity via certificates. Firefox does not trust 035-v3-client.fitbit.com because its certificate issuer is unknown, the certificate is self-signed, or the server is not sending the correct intermediate certificates.

Error code: SEC_ERROR_UNKNOWN_ISSUER

View Certificate

Best Answer
6 REPLIES 6

‎10-31-2021 15:43

‎10-31-2021 15:43

Oops

https://035-v3-client.fitbit.com/

 

Best Answer

‎10-31-2021 17:05

In response to wmohanlon

‎10-31-2021 17:05

Thought about it more, and I suppose the chain could be self-signed on purpose?  Cert chain might be OK from the perspective of my watch, then.

Best Answer

‎11-01-2021 23:07

‎11-01-2021 23:07

Apple neither trusts the cert either, check in the details for more information 

C3B1A4
Best Answer
0 Votes

‎11-03-2021 04:21

In response to alexanderrr15

‎11-03-2021 04:21

That domain in theory is a non-public one using our own root CA. I don't think that is related to your specific issue.

Best Answer
0 Votes

‎11-06-2021 12:16

In response to JonFitbit

‎11-06-2021 12:16

Thanks, that makes sense.

 

The confusing part is that I've got both a Versa 2 and a Versa.  The Versa 2 is new, and I cannot get it to connect to the developer portal without throwing the "Connection error 1006".  I switched back to the Versa, and it can still connect to the portal just fine.

 

I can see that it is connecting to that 035-v3-client.fitbit.com host briefly multiple times before it throws the 1006 error. 

Best Answer
0 Votes

‎11-06-2021 21:03

In response to wmohanlon

‎11-06-2021 21:03

Possibly the certificate expired.

 

Also suddenly getting cookie requests in browsers, so something changed.

 

See post on SSL perhaps related.

Author | ch, passion for improvement.

Best Answer
0 Votes