Digital Certificate

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

We are installing a new Java/Web Based application that requires the user to
click on "Always" when prompted by a certificate requiring acceptance. What
I would like to know is how can I "Always" trust or allow the site to be
accepted without the user having to click on it. Can this certificate be
placed somewhere in our GP that would always accept it without user
intervention?

Thank you
 
Hi Curtis

It's not clear from your explanation but I think what you're seeing is the
result of the client not trusting the CA which issued the cert. When a
certificate is presented to a client, it first checks the signature on the
certificate to ensure that it looks correct but then looks at which CA
issued the certificate and looks at its Trusted Root Certificate Authorities
store. If the CA that issued the cert isn't here, it presents a message.
The trick is installing the CA certificate in the trusted store so that the
certificate chain is validated.

HTH
--
Mark Renoden [MSFT]
Windows Platform Support Team
Email: (e-mail address removed)

Please note you'll need to strip ".online" from my email address to email
me; I'll post a response back to the group.

This posting is provided "AS IS" with no warranties, and confers no rights.
 
We are trying to do exactly that with our workstation using the Internet
Explorer Maintenace tool in GPMC. with no success. We have the Cert
(verasign). Can you comment on what we could do?

Mark Renoden said:
Hi Curtis

It's not clear from your explanation but I think what you're seeing is the
result of the client not trusting the CA which issued the cert. When a
certificate is presented to a client, it first checks the signature on the
certificate to ensure that it looks correct but then looks at which CA
issued the certificate and looks at its Trusted Root Certificate Authorities
store. If the CA that issued the cert isn't here, it presents a message.
The trick is installing the CA certificate in the trusted store so that the
certificate chain is validated.

HTH
--
Mark Renoden [MSFT]
Windows Platform Support Team
Email: (e-mail address removed)

Please note you'll need to strip ".online" from my email address to email
me; I'll post a response back to the group.

This posting is provided "AS IS" with no warranties, and confers no rights.

CurtisC said:
We are installing a new Java/Web Based application that requires the user
to
click on "Always" when prompted by a certificate requiring acceptance.
What
I would like to know is how can I "Always" trust or allow the site to be
accepted without the user having to click on it. Can this certificate be
placed somewhere in our GP that would always accept it without user
intervention?

Thank you
Click to expand...
Click to expand...
 
Back
Top