errorWordfence•locksslcodecURLsecurityfirewallinfoWordfencesettingsserver_configuration•labelCommon•check_circleEasy

Wordfence error: SSL certificate verification failed

Wordfence contacts its cloud servers through the WordPress HTTP API. The request travels via cURL. If cURL cannot verify the remote certificate, the request stops.

The verification step compares the certificate chain to a trusted root store. When the server lacks a current CA bundle or the bundle path is wrong, cURL returns error 60. An old cURL build or missing OpenSSL support also triggers the failure.

A self‑signed site certificate or an incomplete chain from a reverse proxy produces the same result. The same error appears when a firewall blocks outbound HTTPS traffic, forcing cURL to abort the handshake.

WordPress Site Health shows the problem in its cURL diagnostics. Wordfence displays a red warning, stops scans, and does not send email alerts because the API call never completes.

Symptoms

[dashicons-warning]

Connectivity test failed

Wordfence reports that it cannot reach its servers.

[dashicons-admin-site]

cURL error 60 displayed

The error banner shows SSL certificate problem: unable to get local issuer certificate.

[dashicons-admin-tools]

Scan does not start

Wordfence scan stops before any files are examined.

[dashicons-admin-generic]

Site Health reports SSL issue

WordPress Site Health lists a cURL SSL verification problem.

Common Causes

Out‑of‑date or missing CA bundle

cURL cannot locate a trusted root certificate store.

Incorrect php.ini path

curl.cainfo or openssl.cafile points to a non‑existent file.

Self‑signed or incomplete certificate chain

Site or proxy presents a certificate without required intermediates.

Outbound firewall blocks HTTPS

Network rules prevent connections to Wordfence servers.

Need this fixed right now?

Don't waste your day debugging. Our experts can Fix your issues in under 2 hours.*

Success Rate

100% Guaranteed

Starting from

$35 /hour

99+

Trusted by Business Owners

“I spent 3 days trying to fix the Elementor loading loop. These guys fixed it in 20 minutes. Lifesavers!”

— Sarah J., Web Designer

Related Issues

Contact Form 7: REST API request failed: 503 Service Unavailable

A 503 Service Unavailable response stops Contact Form 7 from sending data...

apiREST APIerror503descriptioncontact-form-7

Contact Form 7: REST API request failed: 429 Too Many Requests

The form tries to send data through the WordPress REST API. The...

apiREST APIerrorerrorsecurityfirewalldescriptioncontact-form-7settingsserver_configuration

Contact Form 7: REST API request failed: 401 Unauthorized

The form tries to send data via the WordPress REST API. The...

apiREST APIadmin_panel_settingspermissionsdescriptioncontact-form-7lock401

Contact Form 7: File upload error: temporary directory missing

The error appears when Contact Form 7 cannot locate a writable temporary...

codePHPcloud_offupload erroradmin_panel_settingspermissionsdescriptiontemporary filedescriptioncontact-form-7

Contact Form 7: Mail (2) sending failed: PHP mail() function disabled

Contact Form 7 reports a failure for Mail (2) when the PHP...

codePHPerrorerrordescriptioncontact-form-7mailMailsettingsserver_configuration

Contact Form 7: Mail (2) sending failed: SSL certificate verification failed

Contact Form 7 reports a failure when trying to send the secondary...

errorerrorlocksslcodecURLdescriptioncontact-form-7