Member_2_231077
asked on
Permanent certification exception by IP address with Firefox
Is there a way of telling Firefox (or just about any other browser for that matter) to permanently exclude an IP address from HTTPS certificate checking?
I have a whole pile of Cisco mobile phones and every one of them has IP address 192.168.1.100 but they all have different certificates. Each time I swap phones in the cradle to configure them Firefox pops up a security exception window where I have to click to accept that the browser cannot verify the certificate. Selecting to permanently accept the certificate doesn't help since the next phone has a different self generated certificate.
If it can't be done via the browser then creating a dummy CA isn't out of scope so long as it's restricted to my laptop.
Posted in wrong TA but I have no idea how to get to https://www.experts-exchange.com/Software/Internet_Email/Web_Browsers/ on EE's zone selection when asking question. Or any other WEB BROWSER / FIREFOX TA for that matter. Just don't suggest using Google "trailing space" Chrome.
I have a whole pile of Cisco mobile phones and every one of them has IP address 192.168.1.100 but they all have different certificates. Each time I swap phones in the cradle to configure them Firefox pops up a security exception window where I have to click to accept that the browser cannot verify the certificate. Selecting to permanently accept the certificate doesn't help since the next phone has a different self generated certificate.
If it can't be done via the browser then creating a dummy CA isn't out of scope so long as it's restricted to my laptop.
Posted in wrong TA but I have no idea how to get to https://www.experts-exchange.com/Software/Internet_Email/Web_Browsers/ on EE's zone selection when asking question. Or any other WEB BROWSER / FIREFOX TA for that matter. Just don't suggest using Google "trailing space" Chrome.
ASKER
I'll try it tomorrow but by the description it looks like it's going to whitelist the certificate rather than the IP address.
Well since I did not had multiple machines with same IP Address and different certificates, I tested out multiple machines e.g. *.mydomain.local with *.mydomain.local in exclusion list, and all were working fine without request for certificate.
All this does is automatically accepts the host certificate!
You will be able to verify this by looking at the Certificate Store...
Hope this helps!
Regards,
All this does is automatically accepts the host certificate!
You will be able to verify this by looking at the Certificate Store...
Hope this helps!
Regards,
ASKER
Just tried to install but doesn't support the latest version of Firefox.
I am using it Firefox version 7.0.1 which is latest as of today!.... Which version of Firefox do you use?
ASKER
Strange, it definitely said it wasn't compatible, maybe I have to install an old version of Firefox and then the browser extension then upgrade firefox, I'll try again tomorrow.
Please use the following link to install the add-on... and I tried removing and re installing the extension. It worked without any errors.... https://addons.mozilla.org/en-US/firefox/addon/perspectives/
Regards,
Regards,
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Whitelist works great, no idea why I couldn't install plugin first time but worked from the link you posted.
I'll suggest following solution to you:
1. Install Firefox addon from http://perspectives-project.org/firefox/
2. Give a hostname cisco or anything as you may deem fine to IP 192.168.1.100 in hosts file
3. Access https://cisco in the Firefox browser
4. On the Certificate Error Page Look for a Red Perspectives Icon on the Right Hand Lower Corner of Firefox browser window.
5. Right Click on the Icon and Choose Add to WhiteList
6. Confirm Adding to Whitelist in the Dialog Box.
Now, going forward you should not be troubled every time.
Hope this helps!
Regards,