+ Post New Thread
Results 1 to 9 of 9
Windows Thread, IE to trust a certificate in Technical; Hi, We have an internal site and we have to use HTTPS for it, the site is using a self ...
  1. #1

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,773
    Thank Post
    865
    Thanked 1,663 Times in 1,448 Posts
    Blog Entries
    11
    Rep Power
    442

    IE to trust a certificate

    Hi,

    We have an internal site and we have to use HTTPS for it, the site is using a self assigned certificate. Is it possible to configure IE in group policy to not show the certificate error screen please?

    Thanks

    Z

  2. #2
    Midget's Avatar
    Join Date
    Oct 2006
    Location
    In a Server Room cutting through a forest of Cat5e
    Posts
    1,298
    Thank Post
    5
    Thanked 59 Times in 49 Posts
    Rep Power
    39
    click on the cert error in the bar, install cert and change the install location to the trusted store. done.

  3. #3

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,773
    Thank Post
    865
    Thanked 1,663 Times in 1,448 Posts
    Blog Entries
    11
    Rep Power
    442
    This needs to be done in Group Policy.....

    would i use this - http://technet.microsoft.com/en-us/l...49(WS.10).aspx

  4. Thanks to FN-GM from:

    TheScarfedOne (10th August 2009)

  5. #4

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,773
    Thank Post
    865
    Thanked 1,663 Times in 1,448 Posts
    Blog Entries
    11
    Rep Power
    442
    Ok thanks, im stuck already

    On the Signature certificate, it want a certificate from the store. What do i do here, do i import im existing on into there?

    Z

  6. #5

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    10,991
    Thank Post
    851
    Thanked 2,653 Times in 2,253 Posts
    Blog Entries
    9
    Rep Power
    764
    What you want is a copy of the cert used for the internal site to add into the trusted list, you only need the public key so you can either go into IIS on the host machine and export it from there. Or you could go to the site in ie, open up the page properties, click the certificates button and export it from there.

    The other thig that you can do is to export a copy of the root certificate for the issuing computer (your cert server) and import that. That will tell your machines to trust anything signed by it if you have it in your trusted root providers folder.

  7. #6

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,773
    Thank Post
    865
    Thanked 1,663 Times in 1,448 Posts
    Blog Entries
    11
    Rep Power
    442
    What you want is a copy of the cert used for the internal site to add into the trusted list, you only need the public key so you can either go into IIS on the host machine and export it from there. Or you could go to the site in ie, open up the page properties, click the certificates button and export it from there.
    This is what i have done, and i am stuck at the point said on by previous post.

    Thanks

  8. #7

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    10,991
    Thank Post
    851
    Thanked 2,653 Times in 2,253 Posts
    Blog Entries
    9
    Rep Power
    764
    Sorry, I have no idea where you are stuck given that I find it quite difficult to understand some of what you type, some of your descriptions also seem incomplete. Anyhow I have found an extremely comprehensive page that goes through the procedure step by step with screenshots and annotations:
    Deploying a Self-Signed Root Certificate with Group Policy
    hopefully this will get it going for you.

  9. 2 Thanks to SYNACK:

    FN-GM (10th August 2009), Ignatius (10th August 2009)

  10. #8

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    15,773
    Thank Post
    865
    Thanked 1,663 Times in 1,448 Posts
    Blog Entries
    11
    Rep Power
    442
    Thanks for link, it was me in the end getting it wrong

    Z

  11. #9
    cookie_monster's Avatar
    Join Date
    May 2007
    Location
    Derbyshire
    Posts
    4,196
    Thank Post
    392
    Thanked 278 Times in 239 Posts
    Rep Power
    74
    Disclaimer - We'll also note that we are not even remotely approaching PKI or Group Policy experts, and we have mainly muddled through several of the choices offered on the road to something that appears to work well. We'd certainly welcome input from those who actually know this stuff.
    I take it that it works well then?

SHARE:
+ Post New Thread

Similar Threads

  1. Certificate Generation
    By TechMonkey in forum MIS Systems
    Replies: 0
    Last Post: 23rd April 2009, 03:00 PM
  2. SSL Certificate
    By PRicho in forum How do you do....it?
    Replies: 39
    Last Post: 22nd January 2009, 12:46 PM
  3. How to remove a Certificate from CA
    By PRicho in forum Windows
    Replies: 2
    Last Post: 22nd July 2008, 11:29 AM
  4. Web certificate
    By edie209 in forum Web Development
    Replies: 15
    Last Post: 16th May 2008, 10:17 AM
  5. Certificate Authority
    By plexer in forum *nix
    Replies: 9
    Last Post: 15th October 2006, 12:57 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •