Announcement

Collapse
No announcement yet.

Certificate Errors

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Certificate Errors

    We are getting an error when we go to our domain's website. I know how to install the certificate on the client but is there a way to avoid having the error come up to begin with? The domain is mail.sterling.edu. You can see that we have to install the root (not the self-signed) into the trusted certificates to get it to go away. I was wondering if there was a way on the server to avoid this error or if I should just purchase a cert from VeriSign, etc... It appears that the self-signed one works (mail.sterling.edu) but IE doesn't trust the root (Sterling College) authority. Any help is greatly appreciated...

    Thanks!

  • #2
    Re: Certificate Errors

    You have to buy one from verisign, godaddy or one of the many others.
    Marcel
    Technical Consultant
    Netherlands
    http://www.phetios.com
    http://blog.nessus.nl

    MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
    "No matter how secure, there is always the human factor."

    "Enjoy life today, tomorrow may never come."
    "If you're going through hell, keep going. ~Winston Churchill"

    Comment


    • #3
      Re: Certificate Errors

      That's what I was thinking... Didn't know if there was another way to get IE to trust the root CA. Thanks for your help.

      Comment


      • #4
        Re: Certificate Errors

        Generally speaking it depends who accesses the site.

        If it is only internal users on domain PCs you can push the root out with group policy and avoid having a public cert.

        If it is public users then you need a public cert as the trusted root certs are already on the machine (very new ones may be pushed by a root cert windows update). If you could just make up your own cert and have it trusted there wouldn't be much point in the trust.
        cheers
        Andy

        Please read this before you post:


        Quis custodiet ipsos custodes?

        Comment


        • #5
          Re: Certificate Errors

          Correct, Andy. However I was more thinking on anything else then only managed computers
          Marcel
          Technical Consultant
          Netherlands
          http://www.phetios.com
          http://blog.nessus.nl

          MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
          "No matter how secure, there is always the human factor."

          "Enjoy life today, tomorrow may never come."
          "If you're going through hell, keep going. ~Winston Churchill"

          Comment


          • #6
            Re: Certificate Errors

            This is for users off-site...

            Comment


            • #7
              Re: Certificate Errors

              Go with what Dumber says then, they aren't that expensive either.
              cheers
              Andy

              Please read this before you post:


              Quis custodiet ipsos custodes?

              Comment

              Working...
              X