[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

how to avoid certificate error page

Posted on 2011-05-09
3
Medium Priority
?
699 Views
Last Modified: 2012-06-27
I would like to know how to avoid certificate error page from internet explorer when trying to contact or webserver via https? even if i have to do it for each visitor our site, because we have limited users.
When I chose “continue to the website”, I get to the login page: when I click on the certificate error on the red box, and view certificate I find my company name on the details pane and  issuer section. is there a way to avoid this error even if I have to do it on each computer visiting my site.
Thanks for your help
0
Comment
Question by:alex-2010
  • 2
3 Comments
 
LVL 10

Expert Comment

by:abbright
ID: 35719802
Usually you get the error page if the certificate is either invalid or untrusted.
Reasons for a certificate being invalid are (among others):
- the name being certified is not the name used to access the site
- the certificate is outdated

For a certificate to be trusted the root certificate of the certificate chain must be trusted on the client.
In order to do so you must either use a certificate which is enrolled by a publicly trusted CA or you must import the root-CA's ceritifcate to all clients that need access to the site.

In order to dive deeper here please give more details about the error message your clients get.
0
 

Author Comment

by:alex-2010
ID: 35720195
thanks abbright
i have imported the root-CA to one of my clients, it works find no error, but i have some concerns thou
is it risky to import the root-CA to the client browser, or it is just kind of public key? if not, is it risky to send the root-CA file to the client so he can install it him self?
also someone told me that to avoid the certificate error, use i.e tools, then security option, trusted sites, and then add the my site to it. I tried it , it did work!
0
 
LVL 10

Accepted Solution

by:
abbright earned 2000 total points
ID: 35720301
The root-CA's certificate to be imported is a public key so there is no risk in distributing it. It has the additional pro that all certificates issued by this CA are trusted afterwards, which might be what you want to do if you own the CA.
Another option of course is to add the site to the trusted sites, but this has the additional effect that you reduce the security when accessing this site (scripts might be allowed without asking, etc...). If you own the site and know that it can be trusted this is an option as well.
0

Featured Post

The 14th Annual Expert Award Winners

The results are in! Meet the top members of our 2017 Expert Awards. Congratulations to all who qualified!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In 2017, ransomware will become so virulent and widespread that if you aren’t a victim yourself, you will know someone who is.
Worried about if Apple can protect your documents, photos, and everything else that gets stored in iCloud? Read on to find out what Apple really uses to make things secure.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

591 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question