Showing questions tagged: Show all questions
  • Archived

As an admin can I add certificate exceptions to Firefox for all users?

As an admin in our organization I wanted to add two "Add Exception..." so end users do not have to get a certificate warning and click through to two places. One is a con… (read more)

As an admin in our organization I wanted to add two "Add Exception..." so end users do not have to get a certificate warning and click through to two places.

One is a connection to a systray service, the url is https://127.0.0.1:51763 and to test and validate this service for the web application, one must first click test in the app, then click Advanced and Add Exception on the "Your connection is not secure" page. The second is https://tablet.sigwebtablet.com:47290/SigWeb/ which has a Thawte certificate on it, but still requires clicking through.

This is for an in house financial operating system. The vendor did place our wildcard cert on the main page which works, its just these two service test URLs cause an issue, and since we do not own these certificates, we cannot re-sign them with a trusted Subject Alternative Name.

If I can do this with Firefox CCK or Group Policy, that would be fine. We do have Firefox trust our Windows Certificate store, so maybe there is something we can do already in Group Policy and Windows Certificates? I'm not sure because the cert at 127.0.0.1 is signed by corelation.local and there are NO SAN names on it, so even trying to use GPO's to import it to the Computers Trusted Root Certificates may not be enough.

Thanks.

Asked by kjstech 1 year ago

Last reply by Mike Kaply 1 year ago

  • Archived

Allow multiple Security Exceptions

Hello, In our environment, we roughly have 200~ subdomains that are all on a local network. Unfortunately, the certificates are self signed, so whenever a user visits X s… (read more)

Hello,

In our environment, we roughly have 200~ subdomains that are all on a local network. Unfortunately, the certificates are self signed, so whenever a user visits X subdomain for the first time they have to go through and manually permanently allow exception on that one subdomain. I was wondering if there is a way to gather a list of the 200~ subdomains, and automate or bulk add them to the exception list. I wasn't able to find much on Google, or maybe there is something I'm not searching properly. I was hoping if you could further point me to the right direction, I appreciate your time in reading this.

Asked by encryptedfaith 1 year ago

Last reply by cor-el 1 year ago