I had the same problem with Fidelity Investments today and spent over an hour on the phone with them. Bottom line is that they are no longer supporting SSL 3.0 certificates due to the vulnerability discovered with the POODLE bug. I'm sure Intuit is not going to update Q2007 to the newer certificate format, so we're stuck with upgrading to Q2015. I've been very hesitant to do this since there are many little features and some big ones that will be missing.
Depending how much activity you have in your Fidelity account(s), you might consider just entering the transactions manually in Quicken 2007 for while. I do this with all my Vanguard accounts; takes me about 15 minutes quarterly. Quicken 2015 will continue to get better as they add features to it month by month over the next year, but some longtime Quicken users may be happier staying with Quicken 2007 until more features get added to 2015.
QMac 2007 & QMac Subscription • Quicken user since 1993
It appears that many financial institutions are halting the use of SSL 3.0 certificates due to the POODLE bug (http://tinyurl.com/kuw2jh2). One of them is Fidelity Investments for which I rely on direct download in Quicken. After over an hour on the phone with them yesterday, they confirmed that due to POODLE, they have disabled SSL 3.0 on their server.
Will Intuit update Q2007 to use TSL certificates? Very doubtful. So it looks like I'm being forced into "upgrading" to Q2015. Not looking forward to all the annoyances and missing features. Feels like being between a rock and a hard place. Intuit has a page where you can vote for features you want implemented in Q2015 here: http://www.quicken.com/mac/compare Go there and vote for your favorites. Mine are Enhanced Reports and Bill Pay.
jacobs... I've considered that option, but I have lots and lots of activity in a whole bunch of Fidelity accounts, so that's a very unattractive option. I will buy and fire up Q2015 and use them in parallel for a few days and decide which is more annoying.
Background info that another user (macuser_22) supplied: "It is probably due to the POODLE vulnerability that was discovered and published 5 days ago by Google (https://www.us-cert.gov/ncas/alerts/TA14-290A)
US-CERT (Department of Homeland Security) says: "There is currently no fix for the vulnerability SSL 3.0 itself, as the issue is fundamental to the protocol; however, disabling SSL 3.0 support in system/application configurations is the most viable solution currently available."
Thus the recommendation is to turn SSL 3.0 off in servers, which is what banks (and apparently Intuit) have done.
Since QM2007 can only use SSL 3.0 (the code was written before TSL existed), QM2007 cannot connect to any server that has SSL 3.0 disabled."
Comments
https://qlc.intuit.com/replies/2235876
Will Intuit update Q2007 to use TSL certificates? Very doubtful. So it looks like I'm being forced into "upgrading" to Q2015. Not looking forward to all the annoyances and missing features. Feels like being between a rock and a hard place. Intuit has a page where you can vote for features you want implemented in Q2015 here: http://www.quicken.com/mac/compare Go there and vote for your favorites. Mine are Enhanced Reports and Bill Pay.
Principal download to Q2014 problem was resolved today. Everything appears to be working again.
Here is more info:
Intuit Announcements:
https://qlc.intuit.com/announcements/1003948
http://knowledgebase.quicken.com/support/help/error-message--ol-248-ol-290-in-quicken-mac-2007-and-earlier/...
Discussion thread on the issue:
http://getsatisfaction.com/quickencommunity/topics/error-message-ol-290-security-certificate-appears-for-any-data-import-in-quicken-2007-including-web-connect-manual-export-imports...
Background info that another user (macuser_22) supplied:
"It is probably due to the POODLE vulnerability that was discovered and published 5 days ago by Google (https://www.us-cert.gov/ncas/alerts/TA14-290A)
US-CERT (Department of Homeland Security) says: "There is currently no fix for the vulnerability SSL 3.0 itself, as the issue is fundamental to the protocol; however, disabling SSL 3.0 support in system/application configurations is the most viable solution currently available."
Thus the recommendation is to turn SSL 3.0 off in servers, which is what banks (and apparently Intuit) have done.
Since QM2007 can only use SSL 3.0 (the code was written before TSL existed), QM2007 cannot connect to any server that has SSL 3.0 disabled."
- Where to find a Help Guide for Quicken for Mac?
- Quicken Mac FAQ list
- Quicken Windows FAQ list
- Help Guide and FAQs for Quicken Mobile
COMPLETE list of Product Ideas - Quicken for Mac to VOTE onObject to Quicken's business model, using up 25% of your screen? Add your vote here:
Quicken should eliminate the LARGE Ad space when a subscription expires
(Canadian Q user since '92, STILL using QM2007)