on 05-01-2007 9:49 AM
Hello all,
I have recently installed a Verisign certificate in the J2EE server (WAS 6.40, SP18) on which my EP 6.0 SP 18 runs. When I access the portal with HTTPS, I get the prompt:
"The security certificate was issued by a company you have no chosen to trust. View the certificate to determine whether you would like to trust the certifying authority"
If I choose "View Certificate" , I see that the issuer is "Verisign Class 3 Secure Server CA"
Under details, I see
CN = VeriSign Class 3 Secure Server CA
OU = Terms of use at https://www.verisign.com/rpa (c)05
OU = VeriSign Trust Network
O = VeriSign, Inc.
C = US
I tried importing the certificate but I still get this prompt. In the IE settings, under Tools --> Internet Options --> Tab Content --> Certificates , tab Trusted Root Certification Authorities I have Verisign as
Verisign Class 1 Public Primary Certification Authority - G3
Verisign Class 2 Public Primary Certification Authority - G3
Verisign Class 3 Public Primary Certification Authority - G3
Verisign Class 3 Public Primary Certification Authority - G5
Verisign Class 4 Public Primary Certification Authority - G3
If I try to import the certificate, while I get the message that the import was successful and the certificate appears in the "Other People" tab under Tools --> Internet Options --> Tab Content --> Certificates , I still have the same prompt
Any help to make sense of this will be very much appreciated
Andreas
In IE, click on the yellow lock and then the details tab. Make sure that the information in the subject field is correct. I misspelled my URL once here and had to get the certificate reissued.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Odd.
I got around the alert by including the portal in the local Internet Explorer's trusted site zone. (temp fix)
Are you using a proxy in front of your portal?
I have already improperly installed a certificate on the proxy too. I mention this because we have a self signed certificate on the portal.
Solved
Followed the instructions of note 694290 to import the certificate chain
Essentially, I needed to export the already existing private key to a .p8 file named exactly after the already existing private key entry. Then, I delete the private key entry and hit Load, put the .p8 file I just exported and then import my certificate file (CSR response), the intermediate CA certificate and the root CA certificate
Regards
Andreas
User | Count |
---|---|
84 | |
10 | |
9 | |
8 | |
6 | |
6 | |
6 | |
5 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.