Win a copy of Testing JavaScript Applications this week in the HTML Pages with CSS and JavaScript forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Bear Bibeault
  • Ron McLeod
  • Jeanne Boyarsky
  • Paul Clapham
Sheriffs:
  • Tim Cooke
  • Liutauras Vilda
  • Junilu Lacar
Saloon Keepers:
  • Tim Moores
  • Stephan van Hulst
  • Tim Holloway
  • fred rosenberger
  • salvin francis
Bartenders:
  • Piet Souris
  • Frits Walraven
  • Carey Brown

SSL With a Self-signed Certificate

 
Ranch Hand
Posts: 569
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
In a web application used within an intranet, we want sensitive information be still sent thru SSL. We generated a server certificate by 'keytool' and configured it for tomcat. The problem is, as the application is not a public web site, we will not obtain a formal certificate from any CA. Now whenever SSL is used the browser always prompts a warning message saying the server certificate is invalid (because the server certicate cannot be verified by some real CA).

Is there any simple method to get rid of this warning message in IE?
 
Rancher
Posts: 13459
Android Eclipse IDE Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I've seen some VBScript that can load a self-signed certificate into the certificate registry, all the user has to do is visit the page. Good 'ol Microsoft. I can't find it but maybe you can search the net for the script (it embeds the certificate as a Base64 encoded string), I'll try to remeber to ask at work.

Dave
 
David O'Meara
Rancher
Posts: 13459
Android Eclipse IDE Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Steps:

1) Export you certificate as PKCS-7 format to a file.
2) Base64 the contents.
3) paste the Base64 contents into the 'credentials' below (you'll have many more lines than this), save the page and load it in IE
4) Click 'yes' and 'yes' when prompted.
5) Certificate should be loaded, verify by viewing the encrypted site.

Note that as mentioned in the HTML below, it is possible to do this using the 'add certificate' wizard, but this is painfl when you need to explain it to multiple users.

 
David O'Meara
Rancher
Posts: 13459
Android Eclipse IDE Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Note that ON_LOAD needs to have the underscore removed, UBB wouldn't let me post the word without the underscore included :roll:
    Bookmark Topic Watch Topic
  • New Topic