+ Post New Thread
Results 1 to 9 of 9
Windows Thread, IE to trust a certificate in Technical; Hi, We have an internal site and we have to use HTTPS for it, the site is using a self ...
  1. #1

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,234
    Thank Post
    894
    Thanked 1,780 Times in 1,534 Posts
    Blog Entries
    12
    Rep Power
    462

    IE to trust a certificate

    Hi,

    We have an internal site and we have to use HTTPS for it, the site is using a self assigned certificate. Is it possible to configure IE in group policy to not show the certificate error screen please?

    Thanks

    Z

  2. #2
    Midget's Avatar
    Join Date
    Oct 2006
    Location
    In a Server Room cutting through a forest of Cat5e
    Posts
    1,298
    Thank Post
    5
    Thanked 59 Times in 49 Posts
    Rep Power
    40
    click on the cert error in the bar, install cert and change the install location to the trusted store. done.

  3. #3

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,234
    Thank Post
    894
    Thanked 1,780 Times in 1,534 Posts
    Blog Entries
    12
    Rep Power
    462
    This needs to be done in Group Policy.....

    would i use this - http://technet.microsoft.com/en-us/l...49(WS.10).aspx

  4. Thanks to FN-GM from:

    TheScarfedOne (10th August 2009)

  5. #4

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,234
    Thank Post
    894
    Thanked 1,780 Times in 1,534 Posts
    Blog Entries
    12
    Rep Power
    462
    Ok thanks, im stuck already

    On the Signature certificate, it want a certificate from the store. What do i do here, do i import im existing on into there?

    Z

  6. #5

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,241
    Thank Post
    882
    Thanked 2,743 Times in 2,317 Posts
    Blog Entries
    11
    Rep Power
    784
    What you want is a copy of the cert used for the internal site to add into the trusted list, you only need the public key so you can either go into IIS on the host machine and export it from there. Or you could go to the site in ie, open up the page properties, click the certificates button and export it from there.

    The other thig that you can do is to export a copy of the root certificate for the issuing computer (your cert server) and import that. That will tell your machines to trust anything signed by it if you have it in your trusted root providers folder.

  7. #6

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,234
    Thank Post
    894
    Thanked 1,780 Times in 1,534 Posts
    Blog Entries
    12
    Rep Power
    462
    What you want is a copy of the cert used for the internal site to add into the trusted list, you only need the public key so you can either go into IIS on the host machine and export it from there. Or you could go to the site in ie, open up the page properties, click the certificates button and export it from there.
    This is what i have done, and i am stuck at the point said on by previous post.

    Thanks

  8. #7

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,241
    Thank Post
    882
    Thanked 2,743 Times in 2,317 Posts
    Blog Entries
    11
    Rep Power
    784
    Sorry, I have no idea where you are stuck given that I find it quite difficult to understand some of what you type, some of your descriptions also seem incomplete. Anyhow I have found an extremely comprehensive page that goes through the procedure step by step with screenshots and annotations:
    Deploying a Self-Signed Root Certificate with Group Policy
    hopefully this will get it going for you.

  9. 2 Thanks to SYNACK:

    FN-GM (10th August 2009), Ignatius (10th August 2009)

  10. #8

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,234
    Thank Post
    894
    Thanked 1,780 Times in 1,534 Posts
    Blog Entries
    12
    Rep Power
    462
    Thanks for link, it was me in the end getting it wrong

    Z

  11. #9
    cookie_monster's Avatar
    Join Date
    May 2007
    Location
    Derbyshire
    Posts
    4,217
    Thank Post
    394
    Thanked 278 Times in 239 Posts
    Rep Power
    75
    Disclaimer - We'll also note that we are not even remotely approaching PKI or Group Policy experts, and we have mainly muddled through several of the choices offered on the road to something that appears to work well. We'd certainly welcome input from those who actually know this stuff.
    I take it that it works well then?

SHARE:
+ Post New Thread

Similar Threads

  1. Certificate Generation
    By TechMonkey in forum MIS Systems
    Replies: 0
    Last Post: 23rd April 2009, 03:00 PM
  2. SSL Certificate
    By PRicho in forum How do you do....it?
    Replies: 39
    Last Post: 22nd January 2009, 12:46 PM
  3. How to remove a Certificate from CA
    By PRicho in forum Windows
    Replies: 2
    Last Post: 22nd July 2008, 11:29 AM
  4. Web certificate
    By edie209 in forum Web Development
    Replies: 15
    Last Post: 16th May 2008, 10:17 AM
  5. Certificate Authority
    By plexer in forum *nix
    Replies: 9
    Last Post: 15th October 2006, 12:57 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •