This thread was archived. Please ask a new question if you need help.
How do I force Firefox 60+ to trust self signed cert like IE and FF 52 do?
We have a vendor which has many tentacles with other systems and because of that they claim we cannot change the certificate on their web services page, which is a problem because it is self signed and obviously causes all browsers to show a warning. I was able to avoid this certificate warning for IE and Firefox 52 by placing this certificate in the computer Trusted Roots Certification Authorities in one of our GPO's. Also by putting a A record in our DNS that matches the common name on the certificate, IE users and old Firefox users (like version 52 in my test) can get straight to this internal page without issue.
Now Chrome and Firefox 60.5.1esr (64-bit) both throw errors still because its a self signed certificate. Even though via the Firefox ADMX templates we have security.enterprise_roots.enabled set to true, for some reason the newer firefox isn't behaving the same way the older firefox does.
How can we remove this certificate warning? I also tried placing the certificate in an accessible UNC path and specifying that path in the ADMX firefox template for Install Certificates. Upon gpupdate it does show under the Your Certificates section with the correct serial number, but I STILL get the warning.
Is there any about:config or GPO I can enable to trust this particular intranet website?