Join the Mozilla’s Test Days event from Dec 2–8 to test the new Firefox address bar on Firefox Beta 134 and get a chance to win Mozilla swag vouchers! 🎁

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Use self signed certificate on TS 2008R2

  • 6 replies
  • 1 has this problem
  • 37 views
  • Last reply by martijnqui

more options

Hi reader,

We are using Firefox on a Terminal server Farm environment with roughly 20 servers. We are using a lot of intranet websites for which we have self signed certificate by our Domain controler.

Users get in Firefox the security prompt sec_error_unknown_issuer. As far I have red Firefox does not check for local self signed certificates. Is there a way we could configure for all users they do not see the error above for -> Specific<- (intranet) websites?

We dont want the users to add the (certificate) security exception like 20 times for EACH intranet website on 20 differend servers. Is it something I can edit in mozilla.cfg on each server or is there another solution?

Thanks in advance, Kind regards, Martijn

Hi reader, We are using Firefox on a Terminal server Farm environment with roughly 20 servers. We are using a lot of intranet websites for which we have self signed certificate by our Domain controler. Users get in Firefox the security prompt ''sec_error_unknown_issuer''. As far I have red Firefox does not check for local self signed certificates. Is there a way we could configure for all users they do not see the error above for -> Specific<- (intranet) websites? We dont want the users to add the (certificate) security exception like 20 times for EACH intranet website on 20 differend servers. Is it something I can edit in mozilla.cfg on each server or is there another solution? Thanks in advance, Kind regards, Martijn

All Replies (6)

more options

The certificates are stored in the cert8.db file of the firefox profile folder. You can add the certificates you want on one computer, then copy the cert8.db file into each computer's profile folder (replacing the one that is already there).

more options

Is there a root certificate available that you could install?

See also:

more options

@User293 and @Cor-el Thanks for your responds. But I do not prefer to edit settings in an protected profile folder of users.

Is there another way?

more options
more options

I have done tweaking for FireFox before within following files:

C:\Program Files (x86)\Mozilla Firefox\defaults\pref\local-settings.js and C:\Program Files (x86)\Mozilla Firefox\mozilla.cfg

Is there someway I could configure a workaround within the files above? For example disable certificate check for an specific FQDN or for intranet websites?

Kind regards, Martijn

more options

Chosen Solution